{"id":7478,"date":"2017-06-04T21:29:35","date_gmt":"2017-06-05T04:29:35","guid":{"rendered":"https:\/\/www.lee.org\/blog\/?p=7478"},"modified":"2017-06-23T21:40:52","modified_gmt":"2017-06-24T04:40:52","slug":"email-spam-proofing-on-dreamhost-with-dkim","status":"publish","type":"post","link":"https:\/\/www.lee.org\/blog\/2017\/06\/04\/email-spam-proofing-on-dreamhost-with-dkim\/","title":{"rendered":"Email Spam Proofing on Dreamhost with DKIM"},"content":{"rendered":"<p>Short form: \u00a0Dreamhost showed me how to implement a method of decreasing spam at the domain level called SPF. They implemented another domain level method of reducing spam, DKIM, a few months after I showed them that they hadn&#8217;t set up their system properly.<\/p>\n<p>&nbsp;<\/p>\n<p>Long Form:<\/p>\n<p>Until recently, there was nothing stopping someone from sending email from lee.org illegitimately (called &#8220;spoofing&#8221; email). A lot of spammers used it to send junk email &#8220;from&#8221; lee.org. This bothered me because:<\/p>\n<ol>\n<li>spam :-(<\/li>\n<li>Sometimes I&#8217;d get thousands of bounced emails<\/li>\n<li>It reduced the assurity that my domain wasn&#8217;t hosting spammers, so sometimes real emails I sent would be marked as \u00a0spam<\/li>\n<\/ol>\n<p>I talked to Dreamhost support and they showed me how to setup an SPF record for my domain. See <a href=\"https:\/\/help.dreamhost.com\/hc\/en-us\/articles\/216107737-SPF-overview\">here<\/a> and <a href=\"https:\/\/help.dreamhost.com\/hc\/en-us\/articles\/220854287-What-SPF-records-do-I-use-\">here<\/a> on how to do it yourself.<\/p>\n<p>Dreamhost support also suggested I create the emails postmaster@ and abuse@ because &#8220;I have seen some cases even though they are very rare cases in which not having these emails set up can cause some problems with servers receiving email.&#8221; Ok, sure. So I set those addresses up.<\/p>\n<p>I created an account at <a href=\"https:\/\/postmaster.google.com\">postmaster.google.com<\/a> to periodically check if Gmail is getting any spam from my domain.<\/p>\n<p>I read up on spam-proofing a domain and realized that Dreamhost hadn&#8217;t implemented DKIM. Actually, they set it up for my domain but it was left in test mode. Even in <a href=\"https:\/\/help.dreamhost.com\/hc\/en-us\/articles\/215029758-What-are-DKIM-records-\">Dreamhost&#8217;s DKIM example<\/a> the test flag was set (see &#8220;Example of a DKIM Record, they write: k=rsa; <strong>t=y<\/strong>; p=GIMfMA0G&#8230;). So I had several back and forths with Dreamhost tech support starting in February and yesterday I got an email, &#8220;Our devs finally got around to removing the test flag and now DKIM records are properly being served.&#8221; Hurray!<\/p>\n<p>In conclusion, you might want to check the headers on your outgoing emails. Look for the &#8220;dkim&#8221; header. Previously, when my account was still in &#8220;test-mode&#8221;, headers looked like &#8220;dkim=pass (test mode)&#8221;. And now they look like &#8220;dkim=pass header.i=@lee.org&#8221; :-)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Short form: \u00a0Dreamhost showed me how to implement a method of decreasing spam at the domain level called SPF. They implemented another domain level method of reducing spam, DKIM, a few months after I showed them that they hadn&#8217;t set up their system properly. &nbsp; Long Form: Until recently, there was nothing stopping someone from [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,1],"tags":[],"class_list":["post-7478","post","type-post","status-publish","format-standard","hentry","category-geekery","category-general"],"_links":{"self":[{"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/posts\/7478","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/comments?post=7478"}],"version-history":[{"count":0,"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/posts\/7478\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/media?parent=7478"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/categories?post=7478"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.lee.org\/blog\/wp-json\/wp\/v2\/tags?post=7478"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}