Question

email extension hijacked -- what can I do?

Someone is using my e-mail extension without my approval (*.@ctrchg.com). What can I do to stop them?

Subscribe
Share

Submit an answer
You can type!ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Hello,

In order to prevent email spoofing, I would recommend the following things:

  • Add an SPF DNS record - SPF stands for Sender Policy Framework, it indicates to mail exchanges which hosts are authorized to send mail for a domain:

https://www.digitalocean.com/community/tutorials/how-to-create-a-spf-record-for-your-domain-with-google-apps

  • Add DKIM record - it is a process to validate sending domain names associated to email messages through cryptographic authentication.

  • Add a DMARC DNS record

Hope that this helps! Regards, Bobby

For clarification, the records do NOT prevent spoofing from happening, they help the receiver know what to do with them, reject, mark as spam, or nothing at all, depending if they are configured to do. The spammer can still fire off e-mails with incorrect “FROM” email addresses night and day.

Thank you! I will forward the solution to my webmaster for implementation. Much appreciated!

-Gary