How To Setup DMARC for your domain to protect it against abuse used in phishing or spoofing attacks.
By default most hosting companies do not setup DMARC entries in the DNS settings of domains. DMARC can be used to protect your domains against abuse in phishing or spoofing attacks.
Spam is a growing concern on the internet and millions of domain owners are sitting ducks for these spammers. DMARC settings for your domain will allow you to stop spammers from using your domain for phishing or spoofing attacks.
As a website owner, you really want to make sure that your visitors or customers will only see emails that you have sent yourself. Set the correct settings within DMARC entry to allow this possibility. We believe having a DMARC entry is a must for every domain owner.
Domain-based Message Authentication Reporting and Conformance (DMARC) is a free and open technical specification that is used to authenticate an email by checking SPF and DKIM records for the domain. By having DMARC in place, all domain owners can fight business email compromise, phishing and spoofing.
If DMARC enforcement is not implemented effectively in an organization, domain owners will be victims to domain abuse and they would helplessly witness their domain abused and impersonated.
Not implementing a strong and proper DMARC policy is one of the biggest mistakes a domain owner or for that matter a company can make. It basically,leaves your domain open to attackers to hijack and send phishing emails targeting your employees, customers, and anyone else.
As end users, we should also be vigilant in discerning where an email is coming from or a website you’re visiting is indeed intended one.
DMARC Setup Steps in cPanel
Login to cPanel.
Click Zone Editor under Domains.
Click the Manage button next to the domain you want to work with.
Click the +Add Record button.
Change the Type from A to TXT.
Enter the Name, TTL, Type, and Record as described below. …
Click Add Record to save your record.
TTL: (leave blank)
Record: v=DMARC1; p=reject; pct=100;
This will tell other email servers to reject all email that does not match the domain identification.