• Latest
  • Trending
  • All

Email & DNS Security Tools: SPF, DMARC, DKIM and Mail Diagnostics

June 11, 2026
ssh command cheatsheet

SSH Command Cheatsheet: Connect, Keys, scp, Tunnels (2026)

June 16, 2026
chmod-chown-cheatsheet

chmod and chown Cheatsheet: Linux Permissions, Decoded (2026)

June 16, 2026
systemctl-journalctl-cheatsheet

systemctl + journalctl Cheatsheet: Services and Logs (2026)

June 16, 2026
grep-cheatsheet

The grep Cheatsheet: Search a File, Search a Tree (2026)

June 16, 2026
rsync-cheatsheet

The rsync Cheatsheet: Mirror, Sync, Copy Over SSH (2026)

June 16, 2026
curl-cheatsheet

curl Cheatsheet: Download Files and Test APIs (2026)

June 16, 2026
iptables-vs-nftables-cheatsheet cheatsheet

iptables vs nftables: Linux Firewall Cheatsheet, Side by Side

June 16, 2026
nmcli-cheatsheet cheatsheet

nmcli Cheatsheet: Wi-Fi and Network Connections From the Linux Terminal

June 16, 2026
powershell-networking-cheatsheet cheatsheet

PowerShell Networking Cheatsheet: Test-NetConnection, IP, DNS (2026)

June 16, 2026
tar command cheatsheet

The tar Command Cheatsheet: Create, Extract, Stop Guessing (2026)

June 16, 2026
Linux find command cheatsheet

The find Command Cheatsheet: Every Recipe You Actually Use (2026)

June 15, 2026
Linux networking commands cheatsheet, ip and ss

Linux Networking Commands in 2026: the ip and ss Cheatsheet

June 15, 2026
  • Online Tools
  • Network Tools
  • Developer Tools
  • Security Tools
Tuesday, June 16, 2026
  • Login
People Are Geek
  • Online Tools
  • Network Tools
  • Developer Tools
  • Security Tools
No Result
View All Result
People Are Geek
No Result
View All Result
Home Email Security Tools

Email & DNS Security Tools: SPF, DMARC, DKIM and Mail Diagnostics

by People Are Geek
June 11, 2026
in Email Security Tools, Network Tools, Online Tools, Security Tools
0
0
SHARES
11
VIEWS
Share on FacebookShare on Twitter

Email & DNS Security Tools: SPF, DMARC, DKIM and Mail Diagnostics

Mail is still where most attacks start. And the records that protect it? They live in DNS, where nobody looks until something’s already on fire. These are the checks I reach for when a domain suddenly can’t send, or when I’m bolting one shut so nobody can spoof it. SPF and DKIM. DMARC sitting on top. Your MX. Plus a quick look at whether your address is already floating around in some breach.

SPF Record GeneratorBuild a valid v=spf1 record from provider presets, with a live counter that keeps you honest against the 10-lookup limit before it bites.DMARC Record GeneratorBuild a DMARC record with the right p=, rua and pct values, plus plain guidance on when to use none, quarantine or reject.DKIM Record GeneratorTurn a public key into the exact selector._domainkey TXT record. It handles the 255-char chunking for you, and there’s a lab keygen if you need one.SPF Record CheckerReads your SPF line and tells you who you’ve actually green-lit to send mail. It also flags whether you’ve blown past that 10-lookup ceiling, the one nobody mentions until it quietly breaks everything.DMARC Record CheckerShows your policy and where your reports end up. Still parked on p=none, doing precisely nothing? You’ll see that too. Look here first, before you ever touch quarantine or reject.DKIM LookupHand it the selector and the domain. It yanks the public key straight out of DNS, so you can see for yourself the signing key is genuinely published and not just half-configured.Email DNS Health CheckerAll four in one glance: MX, SPF, DMARC, DKIM. Honestly, this is the tab I open first whenever someone slacks me “our email just stopped working.”Breach-Safe Email CheckerA fast gut-check on an address. Has it surfaced in a known leak? And if so, what’s worth locking down next? Straight answers. No scare tactics, I promise.

Email DNS and account safety

Most people skip this part. These three aren’t separate boxes to tick off and forget. SPF says which servers are allowed to send for you. DKIM then signs the message so it can’t be quietly tampered with on the way over. DMARC is the one that ties those two together and tells the receiving server what to do when a message flunks both checks. Get any one of them wrong and the others can’t really cover for it. Which is exactly why I’d rather check them as a set than poke at them one at a time. Maybe that’s just paranoia talking, honestly, but I’ve been burned by a “fixed” SPF that left DMARC wide open, so.

Cyber Privacy ToolsDNS LookupSecurity Headers Checker

Sources & further reading

  • RFC 7208, SPF
  • RFC 6376, DKIM
  • RFC 7489, DMARC
ShareTweetPin
People Are Geek

People Are Geek

I'm Stephane, a network and systems engineer with over 15 years of hands-on experience on production infrastructure, virtualization (ESXi, Proxmox), networking, and self-hosting. Earlier in my career I built and ran a Linux resource site that became a well-known reference for sysadmins. Today I focus on cybersecurity, and I also work as a technical trainer, teaching networking and security to people who do it for a living. Everything on People Are Geek comes from real-world practice, not theory. I build every tool on this site myself, and I write about what I've actually deployed, broken, and fixed. If it's here, I've used it.

People Are Geek

Copyright © 2017 JNews.

Navigate Site

  • About PeopleAreGeek
  • Affiliate Disclosure
  • All Tools and Articles
  • Contact
  • Cookie Policy
  • Hyper-V Hub: Tools, Error Fixes and Lab Guides
  • Linux Hub: Cross-Distro Reference, Articles, Tools
  • Privacy Policy
  • Sample Page
  • Terms of Service
  • VMware vSphere & ESXi Hub: Tools, Error Fixes and Guides

Follow Us

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Online Tools
  • Network Tools
  • Developer Tools
  • Security Tools

Copyright © 2017 JNews.