DKIM
DKIM verifies the sender and integrity of a message. It allows an email system to prove that spammers did not alter an incoming message while in transit (forgery), and that the messages that your domains receive come from the specified domain.
- To enable DKIM, click Enable.
- To disable DKIM, click Disable.
If you already use the DSO PHP handler and you enable DKIM, emails that you send will not display any information in the Return-Path, Reply-To, or From fields in the email header. As a result, DKIM will show nobody as the sender. If you use a PHP script, manually add the headers.
The following PHP script adds the missing fields to an email header:
<?php
$to = 'nobody@example.com';
$subject = 'the subject';
$message = 'hello';
$headers = 'From: webmaster@example.com' . "\r\n" .
'Return-Path: webmaster@example.com' . "\r\n" .
'Reply-To: webmaster@example.com' . "\r\n" .
mail($to, $subject, $message, $headers);
?>
SPF
SPF attempts to deny spammers the ability to send email while they forge your domain’s name as the sender (spoofing). SPF adds IP addresses to a list of servers that can send mail from your domains. It verifies that messages that your domains send originated from the listed server, which reduces the amount of backscatter that you receive.
- To enable SPF, click Enable.
- To disable SPF, click Disable.
Note:
Run the /usr/local/cpanel/bin/spf_installer script to add an SPF record to all of a user's domains' zone files. For more information, read our The /bin/spf_installer Script documentation.
You can use the following Advanced Settings options to further configure SPF:
Notes:
- Click Add to add domains.
- Click Remove to remove domains.
- Click Update to save your changes.
|
Setting
|
Description
|
|---|---|
| Additional Hosts that send mail for your domains (A) |
Additional hosts that the system automatically approves to send mail from your domains. |
| Additional MX servers for your domains (MX) | MX entries that can send mail from your domains. |
| Additional IP Address blocks for your domains (IPv4 or IPv6) |
IP addresses (IPv4 or IPv6) that you approve to send mail from your domains. The system automatically includes your server's main IP addresses in this list. Note: You must use CIDR notation (for example, |
| Include List (INCLUDE) | Additional domains to include in your SPF settings. Use this setting, for example, when you send mail with another service. |
| All Entry (ALL) |
Whether SPF causes undefined hosts to fail.
After you test the entries in the above lists, we strongly recommend that you enable this feature. |
| Overwrite Existing Entries |
Whether to overwrite existing SPF entries. If you enable this setting, the system overwrites existing SPF entries. |
