Guides, best practices and news about email deliverability, DNS authentication and domain security.
Practical guide to interpreting DMARC aggregate reports: XML format, legitimate vs suspicious sources, shadow IT, and how to use the data to strengthen your policy.
Everything about email encryption: STARTTLS, opportunistic vs enforced TLS, MTA-STS, DANE, TLS-RPT. Why Gmail shows a red padlock and how to avoid it.
Complete dissection of a DKIM-Signature header: algorithm, body hash, canonicalization, selector, timestamp. Understanding the verification process step by step.
Why your DKIM key size matters: history of RSA 512/768/1024-bit vulnerabilities, migration to 2048 bits, and Ed25519 as the future standard.
Technical explanation of dual DKIM signatures: why your ESP adds its own signature, the role of Gmail and Yahoo Feedback Loops, and the impact on DMARC alignment.
Complete guide to BIMI (Brand Indicators for Message Identification): prerequisites, VMC certificate, DNS setup and impact on trust.
Complete guide to setting up a DMARC record on your domain: syntax, policies, RUA reports and best practices.
Everything about email blacklists (RBL/DNSBL): how they work, why your IP or domain is listed, and how to get removed step by step.
Understand the factors that influence your email deliverability: IP reputation, DNS authentication, content, engagement and monitoring.
Complete guide to DKIM (DomainKeys Identified Mail): how cryptographic signatures work, DNS setup, key rotation and troubleshooting.