[freddieleeman]

For those interested in testing their email for SPF, DKIM, and DMARC compliance or eager to learn about these mechanisms that enhance email security and prevent spoofing, check out https://learnDMARC.com. This is a site I developed to promote adoption and share knowledge. It includes a challenging quiz, tough even for professionals. I'd be keen to know your scores on the first attempt – honesty counts!

[ksjskskskkk]

harder part is knowing the hacks from your dns provider that prevents things from working right.

I've spent two weeks on a domain with limited registrar options because their dns manager lied about supporting larger public keys in txt records.

[flumpcakes]

This is great! I scored 60% because I didn't realise 5321 HELO was also checked. That's news to me, I've never seen that before. I got 90% on my 2nd attempt :)

Also I think there was one question that was a mistake, it had a policy along the lines of:

v=DMARC1; p=reject; <stuff...>; pct=0; <stuff...>

I answered that a failing message would have an effect of p=none, but the right answer was apparently p=quarantine. Is that right, considering pct=0? (Unless I was blind and the pct wasn't set to 0 in the question...)

[freddieleeman]

https://datatracker.ietf.org/doc/html/rfc7489#section-6.6.4

"If email is subject to the DMARC policy of "reject", the Mail Receiver SHOULD reject the message (see Section 10.3). If the email is not subject to the "reject" policy (due to the "pct" tag), the Mail Receiver SHOULD treat the email as though the "quarantine" policy applies. This behavior allows Domain Owners to experiment with progressively stronger policies without relaxing existing policy."

[Kirce]

If I scroll the DMARC Results on mobile Firefox, the right column doesn't scroll, while the rest of the table does. The results where all green, as expected :)

[superhumanuser]

This is beautiful and fun to use!

Thank you thank you.

[binkHN]

Super slick site!

[w3ll_w3ll_w3ll]

Amazing site!