How to Set Up Your Email to Help Prevent Phishing Attacks on Your Customers

As an effort to combat an increasing number of phishing campaigns across the internet, Gandi has begun to use a security feature which allows a receiver to check that an email is truly coming from the sender listed in the email. In order for this service to work properly you must add an SPF record to the domain you use to send email to your customers.

The DNS records that must be listed are different depending on whether the email address you use to communicate with customers is hosted by Gandi or somewhere else (for example, if you host your own email). You can read about how to update DNS records here.

Email is Hosted by Gandi

If the email you use to communicate with customers is hosted by Gandi you need to have the following text included in a single SPF record on your domain:

include:_mailcust.gandi.net include:_spf.gandi.net

Email is Not Hosted by Gandi

If the email you use to communicate with customers is hosted outside Gandi you need the following text included on the SPF record for your domain:

include:_spf.gandi.net

If “include:_mailcust.gandi.net” is listed, you should remove it.