Freddie Leeman

@[email protected]
64 Followers
14 Following
249 Posts
Geek, dad, entrepreneur, security enthusiast
Bloghttps://www.freddieleeman.nl
Twitter@freddieleeman
Projecthttps://learnDMARC.com
Projecthttps://URIports.com
Projecthttps://SmartHomeGeeks.io
Freddie LeemanJan 23
The Penguin of EvilJan 22
If social media algorithms are bad and addictive then the fix isn't to stop kids accessing social media, the fix is to stop bad and addictive social media algorithms because that protects everyone.
Freddie LeemanJan 13
Google has streamlined its SPF record, reducing it by three DNS lookups.
https://www.uriports.com/blog/google-simplifies-its-spf-record/
Google simplifies its SPF record and that is good news for everyone

At the start of December 2025, Google quietly made a meaningful change to the SPF record published at _spf.google.com. While the change may look subtle at first glance, it has clear benefits for anyone relying on Google in their own SPF configuration. A short history of Google’s

URIports Blog
Freddie LeemanNov 6

The new BIMI lps= tag, also known as the local-part selector, has been added to the BIMI specification. It allows domain owners to define different brand indicators based on the sender address (for example noreply@, support@, marketing@), without relying solely on the selector header.

With lps=, brands can assign unique BIMI logos to different sender types, exclude certain local-parts from showing any logo at all, and gain far more control over how their brand appears in recipients’ inboxes.

https://www.uriports.com/blog/bimi-lps-tag/

#BIMI #EmailAuthentication #DMARC #BrandProtection #URIports #EmailSecurity

Understanding the new lps= tag in BIMI

The BIMI specification continues to evolve, and one of the most notable changes in draft version 11 is the introduction of the new lps= tag, also known as the local-part selector. What is the lps= tag? In prior versions of BIMI, published brand indicators and their DNS assertion records relied

URIports Blog
Show threadFreddie LeemanOct 26
@SIDNlabs De link naar het bericht geeft een 404-fout. De juiste pagina start in het Engels en gaat daarna verder in het Nederlands. Juiste URL: https://www.sidnlabs.nl/nieuws-en-blogs/ntp-servers-evalueren-met-ntpinfo
Show threadFreddie LeemanAug 21, 2025
@tychotithonus
Show threadFreddie LeemanJul 10, 2025
@cybertrapped Please note that DKIM validation requires the complete email, and even missing whitespace can cause the hash calculation of the body to fail. If you'd like full validation, simply send the email to learnDMARC.com and we'll handle it for you. If you're only interested in understanding the headers, use the "paste headers" feature instead.
Show threadFreddie LeemanJul 9, 2025
@cybertrapped Pay attention to valid DKIM signatures. If a DKIM signature passes validation, the associated domain is—at minimum—partially responsible for the message.
Show threadFreddie LeemanJul 9, 2025

@cybertrapped If you paste headers into LearnDMARC, we will visualize them for you, but do not check if they are valid. Please note that these headers may not be compliant with DMARC or SPF specifications. For example, when manually checking SPF for IP 192.184.11.189 on the domain abm.com, the result should be a permerror due to excessive void DNS lookups.

Received-SPF: permerror (abm.com ... _spf.salesforce.com: Maximum void DNS look-ups limit (2) exceeded) envelope-from="[email protected]"; client-ip=192.184.11.189

Show threadFreddie LeemanJul 3, 2025
@tychotithonus TIL this even existed! Anything similar worth checking out?
Show threadFreddie LeemanMay 21, 2025
@michael have a look at mine: https://URIports.com/dmarc. Feature rich and starts at just $12 /yr.
An advanced unified tool to monitor DMARC, Content Security Policy, Network Error Logging, TLS-RPT, and more.

URIports. Real-time reporting for websites and email

URIports