A: Yes, you can absolutely purchase now and stack codes. Our offer allows you to stack up to 8 codes. We’ll make sure to update the information to reflect that this applies beyond August 2024.
A: Parked Domains” refer to domains that are not actively sending email but are still protected by a DMARC policy—often a strict one like p=reject. These domains are monitored to prevent unauthorized use (such as spoofing), even though they don’t generate legitimate outbound traffic. In dmarcreport.com, we include these domains in your reports so you can maintain visibility and control over your entire domain portfolio.
I found a couple of comments from Brad regarding parked domains:
"parked domain is the tracking of a domain that is not supposed to be sending any emails, but you still want to watch it from a cyber security perspective to see if or when somebody’s trying to use it to impersonate another domain or if it is currently being used to send spam"
"http://dmarcreport.com/parked-dmarc/ we have lots of customers that have large domain portfolios. Think of folks that own the .com, .org, .net, .* of their domain names. They dont email on them but they do want to KNOW if someone is trying to email on them. We have alerts that can be triggered if one of these parked domains gets any emails - it can help spot a squatter or even a misconfigured...
Yep - domains you own but are not sending ANY email from, nor are you expecting any 3rd party to be sending on your behalf can be parked and monitored - so you can be alerted if something does change.
Q: AI
Have you thought about adding AI to your solution❓ So that it can be a helper for working with your tool.
Idea: An interesting idea may be BetterStack which uses AI in analyzing logs. ◾https://betterstack.com/incident-silencing
A: Yes, we’re excited to share that an AI-powered analyzer tool will be integrated into dmarcreport.com within the next two weeks. This feature will help you interpret your reports more easily, offering smart insights and recommendations to streamline your DMARC management.
Maybe on the https://betterstack.com/incident-silencing idea, if you can import via email we can send you the alerts and you can use the tool to filter the alerts we send?
As Vasile mentioned AI is already on the staging server. There should be two components one that provides specific instructions on an individual dmarc reports and the other about the overall account health and next steps.
A: We’re actively expanding DMARCReport.com with powerful new features to help users better manage email authentication and domain security. Here’s a quick overview of what’s in development: • AI-Powered Report Analyzer An upcoming AI assistant will help users interpret DMARC reports, highlight issues, and suggest actions—launching in under two weeks. • Hosted DKIM (Coming Soon) We’re building a fully hosted DKIM management tool, making it easier to generate, publish, and rotate DKIM keys across your domains without manual DNS work. • Postmaster Tools A new Postmaster insights module will provide enhanced visibility into sending behavior, bounce rates, and sender reputation. • Enhanced SPF Tools Ongoing improvements to SPF flattening and management, including clearer configuration flows and smarter change tracking. • Tag & Domain Management Upgrades More flexible tagging features, including the ability to add, edit, and remove tags directly from domain settings. • Streamlined Hosted Services Setup Hosted services are now easier to add and manage as part of the domain configuration process. • Improved Team & User Control More control over team management, domain ownership, and account-level permissions.
We’re focused on building smarter tools that reduce manual work and strengthen your email infrastructure—more powerful updates are on the way!
A: Here is what you can do: if you detect that someone is spoofing your domain, there are several steps you can take: 1. Ensure DMARC is Properly Configured: Make sure your domain has a DMARC policy set to p=reject or p=quarantine with proper alignment of SPF and DKIM. This prevents unauthorized emails from being delivered to recipients. 2. Monitor Reports: Use dmarcreport.com to continuously monitor aggregate reports. Our tool helps you quickly identify sources attempting to spoof your domain. 3. Investigate the Source: Analyze the report data to pinpoint the IP addresses or services involved. In many cases, spoofing attempts come from unsecured or compromised servers. 4. Report Abuse: You can report the offending IPs or domains to the relevant hosting providers or abuse contacts. Our team can assist you in locating the right abuse channels. 5. Strengthen Domain Posture: Protect unused or “parked” domains with strict reject policies, and regularly audit all your DNS records (SPF, DKIM, and DMARC).
Or maybe in today's AI world it should be an 🤖AI Assistant that will then guide us on what to do. 🤔 It would be great to have it guide us and we can automate our activities with Webhooks.
Q: Customers who bought in Oct/Nov 2024
Can we buy now and stack? I assume so - the information may need updating because it only mentions customers who bought up to August 2024.
By the way, it's a very handy product!
Vasile_Diaconu
Jul 9, 2025A: Yes, you can absolutely purchase now and stack codes. Our offer allows you to stack up to 8 codes. We’ll make sure to update the information to reflect that this applies beyond August 2024.
Share DMARC Report
Q: What are parked domains?
I see that value in the feature table, but there is no clarification what it means.
Vasile_Diaconu
Edited Jul 9, 2025A: Parked Domains” refer to domains that are not actively sending email but are still protected by a DMARC policy—often a strict one like p=reject. These domains are monitored to prevent unauthorized use (such as spoofing), even though they don’t generate legitimate outbound traffic. In dmarcreport.com, we include these domains in your reports so you can maintain visibility and control over your entire domain portfolio.
Share DMARC Report
I found a couple of comments from Brad regarding parked domains:
"parked domain is the tracking of a domain that is not supposed to be sending any emails, but you still want to watch it from a cyber security perspective to see if or when somebody’s trying to use it to impersonate another domain or if it is currently being used to send spam"
(Will put next comment in another message)
"http://dmarcreport.com/parked-dmarc/
we have lots of customers that have large domain portfolios. Think of folks that own the .com, .org, .net, .* of their domain names. They dont email on them but they do want to KNOW if someone is trying to email on them. We have alerts that can be triggered if one of these parked domains gets any emails - it can help spot a squatter or even a misconfigured...
...domain"
Yep - domains you own but are not sending ANY email from, nor are you expecting any 3rd party to be sending on your behalf can be parked and monitored - so you can be alerted if something does change.
Q: AI
Have you thought about adding AI to your solution❓
So that it can be a helper for working with your tool.
Idea:
An interesting idea may be BetterStack which uses AI in analyzing logs.
◾https://betterstack.com/incident-silencing
Vasile_Diaconu
Edited Jul 9, 2025A: Yes, we’re excited to share that an AI-powered analyzer tool will be integrated into dmarcreport.com within the next two weeks. This feature will help you interpret your reports more easily, offering smart insights and recommendations to streamline your DMARC management.
Share DMARC Report
Maybe on the https://betterstack.com/incident-silencing idea, if you can import via email we can send you the alerts and you can use the tool to filter the alerts we send?
As Vasile mentioned AI is already on the staging server. There should be two components one that provides specific instructions on an individual dmarc reports and the other about the overall account health and next steps.
👍👏
Q: What's new in functionality
What are you working on now❓
Vasile_Diaconu
Jul 9, 2025A: We’re actively expanding DMARCReport.com with powerful new features to help users better manage email authentication and domain security. Here’s a quick overview of what’s in development:
• AI-Powered Report Analyzer
An upcoming AI assistant will help users interpret DMARC reports, highlight issues, and suggest actions—launching in under two weeks.
• Hosted DKIM (Coming Soon)
We’re building a fully hosted DKIM management tool, making it easier to generate, publish, and rotate DKIM keys across your domains without manual DNS work.
• Postmaster Tools
A new Postmaster insights module will provide enhanced visibility into sending behavior, bounce rates, and sender reputation.
• Enhanced SPF Tools
Ongoing improvements to SPF flattening and management, including clearer configuration flows and smarter change tracking.
• Tag & Domain Management Upgrades
More flexible tagging features, including the ability to add, edit, and remove tags directly from domain settings.
• Streamlined Hosted Services Setup
Hosted services are now easier to add and manage as part of the domain configuration process.
• Improved Team & User Control
More control over team management, domain ownership, and account-level permissions.
We’re focused on building smarter tools that reduce manual work and strengthen your email infrastructure—more powerful updates are on the way!
Share DMARC Report
Q: Then what? (You find a spoofer)
What can we do if we find someone spoofing us? What steps can we take to stop them? Report them? Looks like a great tool.
Vasile_Diaconu
Edited Jul 9, 2025A: Here is what you can do:
if you detect that someone is spoofing your domain, there are several steps you can take:
1. Ensure DMARC is Properly Configured:
Make sure your domain has a DMARC policy set to p=reject or p=quarantine with proper alignment of SPF and DKIM. This prevents unauthorized emails from being delivered to recipients.
2. Monitor Reports:
Use dmarcreport.com to continuously monitor aggregate reports. Our tool helps you quickly identify sources attempting to spoof your domain.
3. Investigate the Source:
Analyze the report data to pinpoint the IP addresses or services involved. In many cases, spoofing attempts come from unsecured or compromised servers.
4. Report Abuse:
You can report the offending IPs or domains to the relevant hosting providers or abuse contacts. Our team can assist you in locating the right abuse channels.
5. Strengthen Domain Posture:
Protect unused or “parked” domains with strict reject policies, and regularly audit all your DNS records (SPF, DKIM, and DMARC).
Share DMARC Report
Verified purchaser
Thank you very much. Number four is critical to stop these people.
The question is what happens next.
🤔
Do you have any Webhooks that could be used to perform further steps automatically or with AI❓
Or maybe in today's AI world it should be an 🤖AI Assistant that will then guide us on what to do.
🤔
It would be great to have it guide us and we can automate our activities with Webhooks.