Email Security
Score
55/100
SPF
Valid
DKIM
Missing
DMARC
NONE
Findings
5
Security Findings
SPF 1
SPF uses soft fail (~all)
security_posture / warning / RFC 7208 5.1
DKIM 1
No DKIM selectors detected
warning
DMARC 2
No explicit subdomain policy defined (sp tag missing)
operational_recommendation / warning / RFC 9989 4
DMARC depends entirely on SPF alignment
security_posture / warning / RFC 9989 4
MTA-STS 0
No MTA-STS policy issues detected
TLS-RPT 0
No TLS-RPT policy issues detected
STARTTLS 1
No MX hosts were found, so inbound SMTP STARTTLS cannot be tested.
informational / info / RFC 3207 4
BIMI 0
BIMI is not configured (optional)
Improvement Opportunities
+5 points
Change SPF policy from ~all to -all
+25 points
Configure DKIM signing
+15 points
Enable DMARC enforcement (p=reject)
Score Calculation
| Component | Score | Reason |
|---|---|---|
| SPF Record | 10 / 10 | SPF record detected |
| SPF Enforcement | 15 / 20 | Soft fail policy (~all) |
| SPF Lookup Health | 10 / 10 | 1 DNS lookups |
| SPF PTR Usage | 5 / 5 | No PTR mechanism detected |
| SPF Include Validation | 5 / 5 | All SPF includes resolved |
| DKIM | 0 / 25 | No valid DKIM selectors detected |
| DMARC Record | 10 / 10 | DMARC record detected |
| DMARC Enforcement | 5 / 20 | Policy set to none |
| Total | 55 / 100 |