So glad you found this helpful! Thanks for the feedback. If you're interested, we are offering a free DMARC Bootcamp starting May, covering SPF, DKIM and DMARC. You can learn more about it here: gca.globalcyberalliance.org/bootcamp-registration-may-2021

So glad it was helpful!🙂

If you need any additional support, we have a ton of resources on our website! www.globalcyberalliance.org/dmarc/

Excellent! Glad to hear it!

The sending email server adds all the meta data that would be needed for the receiving organization to perform SPF verification.

Yes, the messages will still be delivered but can show as a fail when looking at DMARC reports for alignment.

@@globalcyberalliance27 Thank you so much for your response. And what if no SPF defined at all, and recipient has an SPF check; mail will be delivered. right?

This means that using SPF alone is not recommended, if your are using SPF alone anyone using your same hosting provider would be able to spoof your domain to send phishing emails.

the receiving side, you have to enable SPF verification on the email security gateway, and indicate how you want to handle SPF from other orgs.

@@shehzadmirza1408 spf

Our recommendation is to use SPF and DKIM, if the service allows for both. If you are a provider that does mail forwarding (or a mailing list), then you should implement ARC (Authenticated Received Chain). See www.globalcyberalliance.org/resource/arc-replace-dmarc/ for more info on ARC.

Thanks for your feedback! This was meant to be short and brief overview, not very technical. That's why we reference openspf.org and other sites for more technical information.