- 17-12-21Wij werken gewoon thuis door
- 05-11-21Mond- en neusmasker vanaf 6 november bij BIT verplicht
- 14-10-21Nationale Datacenter Dag 9 november 2021
- 12-10-21Plaatsing nieuwe drycooler voor BIT-2A
- 03-08-21Wegwerkzaamheden BIT-2 van 16 aug tot en met 25 sep
- 23-07-21DDoS aanvallen naar BIT infra
- 25-06-21Mond- en neusmasker niet meer verplicht bij BIT
- 14-04-21Untangle haalt de complexiteit uit netwerkbeveiliging
- 03-03-21Vacature Netwerk Engineer
- 02-03-21Update RFO netwerk incident 17 februari 2021
Prevent abuse of your unused domain name
08-05-2019 13:37:01
Another popular method to abuse your unused domain name is sending email from that unused domain name.
Many businesses and organisations register large amounts of domain names as a defensive strategy. This is to prevent a competitor or criminal from registering a domain name that is similar to theirs or their brand’s. However, if such companies do not protect these domain names as well as the ones they do actively use, they are still at risk of abuse. A criminal can use a defensively registered domain name to send emails from. And because the domain names are so similar to the real domain name, it increases the chances of users opening the email.
This kind of abuse is relatively easy to prevent by letting email providers know that they should not accept email from this domain. Add a so-called 0 MX record, configure an SPF record that holds no IP address and include a DMARC record that advises to decline all email that is not ‘aligned’.
@ IN MX 0 .
@ IN TXT "v=spf1 -all"
@ IN TXT "v=DMARC1; p=reject; sp=reject; adkim=s; aspf=s; pct=100"
A small effort that goes a long way towards making the internet a little safer!
By: Wido Potters