Protect your email address from Spammer and Forgery

Domain Name is one of the most precious asset in online business. We should spent some time and effort in protecting it from being misused and get blacklisted. Today I am going introduce is SPF stand for Sender Policy Framework. It is an effective method to protect your domain from being used by spammer to send out spam email with your domain name. The framework is a technical method in preventing sender email address forgery.

How does SPF work?

SPF is a framework that need to be implement by both side of the email system, the sender and the receiver.

• The sender need add a TXT entry in their DNS entry. This entry allow the sender to specify what host is authorized to send email using it’s domain name. For example,

  sitek.com.au.     TXT     "v=spf1 mx -all"

  This entry in the sitek DNS entry would mean that all sitek.com.au MX host are authorized host to use sitek.com.au domain name to send out email. They are allow to send out sitek.com.au email address’s email. More information on syntax can be found in www.openspf.org.

• When receiver end, receive an email, it will need to check the sender email address DNS entry. If DNS contain SPF entry, check are perform to make sure that the sending host is one of the machine listed in the SPF entry. This prevent spammer from using your domain name to spam email.

We should encourage ourselves and other to implement SPF framework on their domain and mail server to help fight against SPAM. List of SPF implementation on the receiver end from here.