Understanding the New DMARC Record Requirements from Google, Microsoft, and Yahoo

In recent updates, tech giants Google, Microsoft, and Yahoo have introduced a requirement for Domain-based Message Authentication, Reporting, and Conformance (DMARC) records. This move is designed to enhance email security by helping to prevent email spoofing. By implementing a DMARC record, domain owners can protect their domain from unauthorised use, thus helping to reduce the risk of phishing attacks and improve email deliverability.

How to Implement DMARC Records

If you’re managing a domain, it’s crucial to ensure that you comply with these new requirements. Here’s a simple guide to help you check for an existing DMARC record and add one if necessary.

  1. Check for an Existing DMARC Record

    Before adding a new DMARC record, check if your domain already has one. You can use tools like MXToolbox to verify your domain’s DMARC record. Simply visit https://mxtoolbox.com/dmarc.aspx, enter your domain name, and the tool will check for an existing DMARC record.

  2. Adding a DMARC Record

    If your domain lacks a DMARC record, you can create one by adding a TXT record to your domain’s DNS settings. Here’s a basic DMARC record example you can start with:

    _dmarc.v=DMARC1; p=none;

    This record is a starting point that tells email receivers to send reports about messages but not to take any specific action against messages that fail DMARC checks.

    To add this record:

    • Log into your domain’s DNS management console.
    • Navigate to the section where you can add a new TXT record.
    • In the host field, enter _dmarc.
    • In the value field, paste v=DMARC1; p=none;.
    • Save the changes and allow some time for the update to propagate.

Need Assistance?

Implementing DMARC records is a significant step towards securing your domain’s email communications. If you encounter any challenges or need further assistance with setting up your DMARC record, feel free to contact me.