Email Security for salesforce.com
SPF configured · DMARC p=reject · MX 2 records.
++
~/email-security · salesforce.comstrong
$ dig +short TXT salesforce.com
[resolve] ok
[audit] posture: strong · MX records: 2
mx
10mxb-00177002.gslb.pphosted.com10mxa-00177002.gslb.pphosted.com
warn
SPFfound
Authorizes senders that may use this domain in MAIL FROM.
lookups3 / 10
all~all
- · Uses '~all' (softfail) — consider '-all' for stronger enforcement.
ok
DMARCfound
Tells receivers what to do when SPF or DKIM fail.
policyreject
pct100%
ruamailto:dmarc_agg@vali.email, mailto:0e5a5c34@inbox.ondmarc.com
n/a
DKIMnot configured
Public key at default._domainkey — only the 'default' selector was checked.
- · No DKIM record at 'default._domainkey' — actual selector may differ (e.g., 'google._domainkey').
n/a
MTA-STSnot configured
Announces SMTP TLS enforcement policy.
- · No MTA-STS announce TXT — modern TLS enforcement not advertised.
n/a
TLS-RPTnot configured
Telemetry destination for SMTP TLS failures.
- · No TLS-RPT record — no telemetry on SMTP TLS failures.
ok
BIMIfound
Logo announcement at default._bimi — only the 'default' selector was checked.
Related