SPF on Sender Audit Blog

Email and DNS: Every Record You Need to Know

Sun, 26 Apr 2026 00:00:00 +0000

DNS is the invisible foundation of email. Without the right records, your emails won’t be delivered, authenticated, or encrypted. Here are all the DNS records a sending domain needs to know and configure.

Overview

Record	Type	Role
MX	MX	Where to deliver emails for your domain
SPF	TXT	Who can send for your domain
DKIM	TXT/CNAME	Public key for verifying signatures
DMARC	TXT	SPF + DKIM alignment policy
MTA-STS	TXT + HTTPS	Enforce TLS encryption
TLS-RPT	TXT	Reports on TLS failures
BIMI	TXT	Verified logo in the inbox
PTR	PTR	Reverse DNS for your sending IPs

MX: Where to Deliver Emails

The MX (Mail Exchange) record specifies which servers receive emails for your domain.

Email Headers Explained: From Received to ARC

Mon, 20 Apr 2026 00:00:00 +0000

Email headers contain the complete story of a message’s journey: who sent it, which servers it passed through, whether authentication succeeded, and why it landed in spam. Knowing how to read them means knowing how to diagnose.

How to Access Headers

Gmail: open the email → ⋮ → “Show original”
Outlook: open the email → File → Properties → “Internet headers”
Apple Mail: View → Message → All Headers
Thunderbird: View → Message Source

Or paste them directly into Sender Audit’s Header Analyzer for a visual analysis.

SPF: The Complete Guide to Authorizing Your Sending Servers

Sat, 17 Jan 2026 00:00:00 +0000

SPF (Sender Policy Framework) is the first line of defense in email authentication. It lets you declare in your DNS which servers are allowed to send email for your domain. Simple on the surface, it hides subtleties that trip up even experienced admins.

What Does SPF Actually Do?

When a receiving server gets an email from contact@yourdomain.com, it asks one question: “Is this server allowed to send for this domain?”