No SPF record found

Description

During the scan, Kayran has detected that no SPF record was found in your site.
We use the SPF record (Sender Policy Framework) to verify the identity of the sender whether it’s email or otherwise, it lists the IP addresses from, and to, which you can send emails on behalf of the domain.
That means that a prompt has indicated that for you.
The prompt simply tells you that your domain is not being configured with a SPF email authentication standard.

An attacker might exploit it in order to perform “spamming” by using your domain for phishing users.
Also, your sent emails will most likely end up in the “Spam” or “junk” folders of the destination since your “reputation” (which is given to you by the Internet Service Providers – ISPs) is poor.

Recommendation

To fix it, all you need to do is configure a SPF for your domain by publishing a DNS .TXT record that will list all the IP addresses that may receive emails on behalf of the domain.
Make sure that the record is written using the correct syntax.

References

https://support.google.com/a/answer/10685031?hl=en

< Return to all Vulnerabilities

HTTP VS. HTTPS

You must have once wondered what HTTP means and what is the difference between that ugly word to HTTPS, and if not, then please read

Read More »

Explaining API

We’ve talked about API’s Vulnerability in here, but i feel like there’s much more to talk about and explain since this is a big and

Read More »

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »

Red Team

You’ve probably heard that there are teams in the Cyber field called Red Team and Blue Team. Let’s talk about the red one, shall we?

Read More »