DMARC Policy changes – Impact on OpenSRS Service notifications

Email providers are always looking to limit the amount of spam and phishing emails their users receive.  Taking advantage of DMARC technology is the next step.  Like other security features, there can be collateral damage and inconveniences involved in the implementation, but the benefits outweigh the draw backs.

OpenSRS is a white label domain registrar service provider.  Many of our resellers have chosen OpenSRS because of our white label approach.  In an effort to maintain anonymity we send notifications to your users as if the message came from the technical contact email address on your account. 

Due to an increase in free mail providers (aol.com, hotmail.com, gmail.com, yahoo.com and so on) taking advantage of DMARC, we are seeing an increase in bounced notifications.  For example: At this time aol.com has implemented a DMARC policy which rejects 100% of the message sent for @aol.com addresses that do not pass DMARC authentication.  If you are using an @aol.com address as your technical contact address OpenSRS won’t be able to send notifications because we aren’t white listed in SPF records for aol.com.

How does this affect me?

If you are using a free mail provider as your technical contact email address some or all of the notifications we send out will be undeliverable.  This affects important notifications such as:

  • Registrant Verification
  • Domain renewal reminders
  • Transfer Authorization
  • ICANN Trade approvals
  • And more

Not all free mail providers have adopted a DMARC policy but we are seeing an increase in these providers enabling policies.  As an example, at this time, gmail.com doesn’t have a reject policy but yahoo.com does.  There has been speculation that google plans to change their DMARC policy for gmail.com to reject messages sometime in 2017.

 

What should I do?

We recommend establishing your own domain for use with your reseller account.  OpenSRS offers white label email service at just 50 cents USD/month per mailbox.  Once you have service established set your reseller account technical contact address to this email address to prevent any delivery issues.

How do I set the technical contact on my account?

  • Login at manage.opensrs.com
  • Click on “Domains” at the top
  • Click on the “Settings” tab

The email address listed in the “Default Settings For New Domains” section is your technical contact address.

If you already have a white label domain setup for your technical contact address you should consider adding our registrar mail system to your SPF records.  More details available here.

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.
Powered by Zendesk