Preventing email spoofing

Been getting a bunch of targeted phishing emails recently. They’re pretending to be my domain registrar, saying that payment is overdue and they’re going to delete my domain permanently. I’ve received similar things before, but this one of the more convincing and aggressive attempts I’ve seen.

This reminded me about a task on my backlog of TODOs, sorting out my domain’s SPF and DKIM. Both are email authentication methods designed to detect forged sender addresses in emails, a.k.a. email spoofing. SPF + DKIM won’t prevent inbound phishing emails, but they do help prevent my own domain from being spoofed in shady outbound emails.

I’d forgotten to add a SPF record so sorted that out. I made sure to add include values for both my email provider and my web host since the web host is responsible for sending things such as password reset emails from the CMS. Unfortunately, my email host Gandi doesn’t support DKIM. 🙁 So that’s a non-starter.

I’ve been considering switching to Proton though, and happily they offer SPF, DKIM, and DMARC. Maybe I’ll make the switch a bigger priority. Gandi has mentioned that they’re working on implementing DKIM though, so maybe I’ll just check back later this year

Eventually I’ll look in to a DMARC policy, but that’s going to come a little later.

A few links that may be useful:

Surfing with coffee

Surfing w/ coffee. Order of exploration:

A
Google image search “knyttan blanket scarves”Today and Tomorrow post about a scarf (↓B) → Nicolas Sassoon (↓C) → Computers ClubAlexandria McCroskyAlexandria McCrosky in i want you magazine (↓D) → Google image search Alexandria McCrosky

B
Emoji Portraits by Yung Jake on Today and Tomorrow

C
artnet interview w/ SassoonOpening Times – Digital Art Comissions (↓E) → How Do We Write When We Write Online by Orit GatGat’s review of The People’s Platform, “Was the internet intended for you?” (↓F) → The People’s Platform: Taking Back Power and Culture in the Digital Age by Astra Taylor

D
Jordan TateTrevor Paglen exhibition at Altman SiegelTrevor PaglenJacob Appelbaum (@ioerror)

E
“You Alright” by Nicholas O’Brien“In The Hollow of the Valley” by Nicholas O’BrienNewHive

F
BOMB magazine