cPanel & WHM Version 94 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!

Add DMARC to the Email Deliverability UI

benny@cpanel.net shared this idea 4 years ago
Open Discussion

As a cPanel end user and server administrator I would like cPanel to add DMARC to the Email Deliverability interface in cPanel in order to ensure that all available email authentication options are presented to me in one place.

Comments (17)

photo
3

This would be very nice to have, as it could potentially help reduce spam delivered to addresses on a server by a good deal. I have all of my domains configured with DMARC records, but would be happy to have the server check other domains for records as well at SMTP time.

photo
1

Yes please! This was originally requested in https://features.cpanel.net/topic/dmarc-config-in-email-authentication-section but they closed it as "completed" since it was added to the DNS Zone Editor but that's not what the OP asked for since editing zones is quite a bit more advanced but DMARC should go hand-in-hand with SPF & DKIM since all the major e-mail providers use it. Hiding it just delays this well established standard's deployment even more. :(

photo
1

So sorry for the frustration! The ability to add and manage DMARC records isn't being hidden, though I can understand how it feels like that. The original request was submitted before the new Zone Editor was being developed, and so that request was used to track the addition to the Zone Editor. I opened this request once that decision was made, in order to see how many folks wanted to see it in the Email Authentication interface as well. To more clearly differentiate between this request and that one I've updated the title on the old one.

photo
1

Hi Benny since DMARC relates to email authentication, i think it only makes sense that is in there. Perhaps at the very least just having a LINK that takes an end user to the zone editor DMARC area,could be a compromise that could be implemented fairly quickly?

photo
1

It's certainly possible, but isn't something we're working on right now. I'll see about bringing it up to the appropriate team ASAP.

photo
photo
2

Yes please, add this function in order to give better reputation in our mails sent.

Thanks!

photo
2

I'm getting clients asking me for this now, so would be good to have sooner rather than later.

photo
1

I second this request. DMARC is as important as the other 2 auth methods.


Also, if in the meantime anyone knows of a console command to enable DMARC on every DNS entry of every account in a server, it could be interesting to implement it massively.

photo
1

It would be of great help to handle on future versions, some easy interface for the administration of the DMARC Record in hosted zones, seeing it with a focus from Server Administrator -> Reseller User -> End user or domain, since most currently utilities to check emails delivery validate this record and other domains hosted on more strict server, when not found DMARC record refuse to mail send.


I hope to see it activated soon.

photo
3

Currently my customers are receiving a lot of messages with fake self from address. Process the dmarcs would solve this problem gracefully.

photo
2

Also... Please MAKE SURE the dmarc processing triggers BEFORE spamassassin, filters, etc. This way we avoid wasted resource usage / overhead for spamassassin processing email messages that would already have been refused at the dmarc stage. Thanks!

photo
1

On some accounts we add it via the edit dns screen.

A record could be added like spf and dkim records.

Maybe use a standard dmarc and the report email could be the default cpanel address

photo
3

Not also in WHM >> Tweak Settings?

"Enable DMARC on domains for newly created accounts"

photo
1

I think a simple record like this would be enough at the time of creating a new account:

v=DMARC1;p=none;sp=none;

This would be the default.

Then having a script that creates this record on all accounts that doesn't have one of these.

This is really necessary because now i have 3 servers with more than 100 accounts each, and i have to do this one by one. Imagine others that have 1.000 accounts.....

photo
2

Please check http://exim.org/exim-html-current/doc/html/spec_html/ch-dkim_spf_and_dmarc.html

Should be good also:

control = dmarc_enable_forensic

+ sending aggregate reports.


Option to enable it in the same way there is for DKIM validation.

photo
2

My suggested default value:


v=DMARC1;p=reject;pct=100;fo=1;aspf=s;adkim=s;


When there is enabled SPF and DKIM


rua and ruf to be set from some cPanel UI.

photo
3

Related features to be completed together

https://features.cpanel.net/topic/dmarc-installation-global

https://features.cpanel.net/topic/dmarc-check-for-incoming-mail


As a Full DMARC Support for incoming and outgoing email.

photo
3

This is one of the most important and requested feature, but after 3 years we not have news about him.


Any idea when will add this feature?, is essential, all the hosting provider add the DMARC record manually and we have many accounts (is very slow task).


Thank you very much.

Leave a Comment
 
Attach a file