DNS-Based Defense: DMARC

In this lesson, we will discuss Domain-Based Message Authenticatioin, Reporting, and Conference and how it can help defend against phishing attacks.

Introduction #

DMARC, or Domain-Based Message Authentication, Reporting, and Conformance is another DNS-based email tool. It’s built on top of SPF and DKIM and has two main uses. First, it can be used to help troubleshoot complex SPF and/or DKIM rules. Second, it can be used to collect forged emails for later analysis. Let’s take a look at the DMARC records in use for punkgrok.org. We do this by looking at the TXT DNS records for _dmarc.punkgrok.org, as follows:

Get hands-on with 1000+ tech skills courses.