_noob.tools
Return to Matrix Dashboard

/MAIL// security

Graphically author 100% compliant SPF and DMARC text payloads for your Cloudflare or Route 53 DNS managers to stop domain spoofing.
Deep Link: /tool/network/dmarc

SPF Policy Constructor

e.g. Google Workspace, Office 365, Mailchimp

Resulting SPF TXT RecordHost: @

v=spf1 a mx ~all

DMARC Compliance Rule

Where XML abuse reports will be sent by Gmail/Outlook.

Resulting DMARC TXT RecordHost: _dmarc

v=DMARC1; p=quarantine;

What is the DNS Anti-Spoofing Policy Constructor?

A deterministic logic engine that outputs syntax-perfect TXT records matching the RFC 7208 (SPF) and RFC 7489 (DMARC) protocols.

How it Works under the hood

Sender Policy Framework (SPF) restricts WHICH servers can send email on your behalf. Domain-based Message Authentication (DMARC) instructs remote receiving servers (like Gmail) on WHAT to do if an email fails that SPF test (quarantine vs reject). This visual matrix enforces strict syntactic formatting, preventing catastrophic mail delivery failures caused by trailing spaces or illegal string modifiers that often occur when written mechanically.

SysAdmin & Security Use Cases

  • »Secure an actively attacked domain whose namespace is currently being mapped by Russian spam botnets.
  • »Construct the `include:` mechanisms required when transitioning corporate email infrastructure from local Exchange to Office 365.
  • »Gradually harden DMARC enforcement parameters from `p=none` to `p=reject` utilizing percentage limits.
  • »Establish strict SPF Soft-Fails (`~all`) to improve overall global Sender Reputation metrics.