@itowner @paulsanders @sha512 @lkarlslund @mika pingcastle is awesome. I used it a lot when I had to clean up a nightmare of an environment that I’d walked into in a new role.
Daniel Ess
- 0 Followers
- 57 Following
- 24 Posts
Just another Aussie, roaming teh cyberz. Interested in email security, AD security, and a bunch of other things that I’ll remember to add here later.
@paulsanders I have no idea, but I’m keen to hear potential approaches and solutions.
@hacks4pancakes Well put! I was just pondering a few of these points earlier this evening.
@panamapauper this photo was taken back in the day when there was an actual point to printing out the code you’d written…
@c_dan4th @thomasfuchs it reminds me of the official Australian Electoral Commission birdsite account. They didn’t take any crap from the conspiracy theory crowd during our most recent federal election.
@freddieleeman I've had a bit of a play with this scenario between M365 and GSuite-hosted tenants, but I can't get auto-forwarded emails to bounce even with a hard fail SPF and aspf=s in DMARC.
Email from DomainA (M365) auto-forwarded to DomainC (GSuite) through DomainB (M365)
DomainA has a SPF hardfail with DMARC reject and a strict SPF alignment policy.
Maybe the emails are getting through because of ARC?
@jerry done. Never paid Twitter a cent, happy to pay to support this platform.
@gossithedog @tomwarren wow, that brings back memories! I used to play that as a kid.
@freddieleeman Interesting! I need to have a play with this later to test it out. Thanks!
@sheogorath one of the key signs of a domain’s email security immaturity IMO is a p=none policy combined with reports being sent to a normal mailbox hosted by that same domain. As some of the other replies have alluded to, have a look at setting up an account with a service that consumes those XML reports for you. I find that the reporting is mainly useful prior to enabling reject mode if you don’t have a proper handle on your domain’s email sources.