Hello, a few months ago, I was asked to audit emails and integrate a new
system for a company. The first thing I did was configure DMARC reporting
(replaced v=DMARC1; p=none;) and after two months of analyzing their email
traffic, I detected some spoofing activity along with a messy SPF record
and
#x27;d love to see redacted headers. I wonder if it's similar to the
> Proofpoint bypass that was in the news a few cycles ago where any 365
> tenant can email through companies that have PFPT setup.
>
> On 12/6/24 1:43 PM, Alex Shakhov | SH Consulting via mailop wrote:
> > Hell
Hello,
I have access to a client’s GoDaddy account with over 400 domains and
monitor DMARC for a subset of them. One domain in particular sees minimal
legitimate traffic - approx. 10 emails/mo via Google Workspace, and has
DMARC set to p=reject due to ongoing spoofing attempts.
About a week ago,
access to over 400 domains, the potential for more serious actions
would have been substantial.
Best,
Alex
On Thu, May 1, 2025 at 12:17 AM John Levine wrote:
> It appears that Alex Shakhov | SH Consulting via mailop
> said:
> >DMARC p=reject. A follow-up review confirmed only two pe
Update: someone from the GoDaddy team reached out and explained what
happened. Apparently, many years ago, a website was created using GoDaddy’s
Websites + Marketing feature, which is hosted by GoDaddy. At some point,
someone found that website and signed up for its newsletter. The
confirmation ema
No, their UI doesn't support that. That's what I was told.
On Thu, May 1, 2025 at 7:37 PM John R Levine wrote:
> On Thu, 1 May 2025, Alex Shakhov | SH Consulting wrote:
>
> > Update: someone from the GoDaddy team reached out and explained what
> > happened. Apparently, many years ago, a website
