Author
Adam W.
Founder, DMARCit
I'm Adam, founder of DMARCit. I read DMARC reports for small businesses and untangle the SaaS senders that quietly break authentication every time someone adds a new tool. The patterns I keep running into: SPF records that hit the ten-lookup ceiling. Alignment that passes on paper and fails in real mail. DKIM keys nobody rotates.
Most of what I write here started as a DMARC report I was confused by.
Topics I write about
- DMARC enforcement migration (p=none to p=reject)
- DMARC alignment failures (SPF/DKIM, envelope-from vs header-from)
- SPF record optimization and the 10-lookup PermError limit
- Hosted SPF and SPF macros vs. flattening
- DKIM signing, alignment, and body-hash failures
- DMARC aggregate (RUA) report parsing and sender identification
- Mailbox-provider bulk-sender enforcement
Recent writing
- What is DMARC?: the operational guide, not the spec
- What is SPF?: the 10-lookup limit and the +all trap
- What is DKIM?: signing isn't rotation
- What is BIMI?: the reward for enforcement, not a separate effort
- Enforcement readiness: moving from p=none to p=reject without breaking real mail