SPF
Looks goodSPF record meets lookup limits.
SPF record meets lookup limits.
Latest audit snapshot: demo.senderguard.email
Review the last scan, proof hash, and quick links to rerun or verify.
Scanned
Jan 1, 2025, 12:00 AM
Score
94
Proof
- scanIdd3f4cedcab12abcd
- sha2568c53afbaf7ff853bd323df8b7861c12d732a94751b3254a5d6d6b1b6492a6bbe
- rulepackVersiondemo
Five compliance badges
SPF
Passing
DKIM
Passing
DMARC
Passing
Alignment
Needs attention
One-Click
Passing
Top recommendations
- Rotate DKIM selectors twice per year to keep strict alignment healthy.
Fix these before the next audit
Copy ready-to-use snippets, then rerun verification to capture new evidence.
DKIM
Looks goodDKIM selectors look healthy.
DKIM selectors look healthy.
DMARC
Looks goodDMARC is enforcing quarantine or reject.
DMARC is enforcing quarantine or reject.
Alignment
Needs immediate fixTighten alignment
Strict alignment is not passing. Align the From domain with authenticated SPF/DKIM identifiers and enforce adkim/aspf=s.
Learn moreDMARC strict alignment
adkim=s; aspf=s- Configure DKIM to sign with d=demo.senderguard.email (or its brand subdomain)
- Publish a 2048-bit RSA key at s2025._domainkey.demo.senderguard.email (new selector)
- Enable adkim=s in DMARC and verify alignment across routes
One-Click
Looks goodRFC 8058 One-Click header detected.
RFC 8058 One-Click header detected.