Support

Support for business applications

Kaspersky Security 8.0 for Linux Mail Server

Mail Sender Authentication

Kaspersky Security 8.0 for Linux Mail Server
Knowledge Base Online Help
Advice & Solutions FAQ Download Forum Contact support Recovery tools Product videos

Mail Sender Authentication

July 4, 2024

ID 94011

Mail Sender Authentication is designed to provide additional protection for your corporate mail infrastructure against spam and phishing.

Kaspersky Security 8 for Linux Mail Server uses the following Mail Sender Authentication technologies:

  • SPF authentication (Sender Policy Framework).
  • DKIM authentication (DomainKeys Identified Mail).
  • DMARC authentication (Domain-based Message Authentication, Reporting and Conformance).

SPF Mail Sender Authentication – comparing IP addresses of mail senders with the list of possible message sources that has been created by the mail server administrator.

Kaspersky Security 8 for Linux Mail Server receives lists of possible message sources from the DNS server.

Enable SPF authentication if Kaspersky Security 8 for Linux Mail Server receives messages directly from the Internet. Disable SPF authentication if Kaspersky Security 8 for Linux Mail Server receives messages from an intermediate internal server.

DKIM Mail Sender Authentication – verification of the digital signature added to messages.

A digital signature associated with the name of the organization's domain is added to messages. Kaspersky Security 8 for Linux Mail Server verifies this digital signature.

DMARC Mail Sender Authentication – Verification that determines the policy and actions taken on messages based on the results of SPF and DKIM Mail Sender Authentication.

After the message has passed SPF and DKIM authentication, the program verifies that the domain containing the sender's address in the From field of the email message header matches the SPF and DKIM IDs.

To enable SPF, DKIM, and DMARC message authentication, you have to allow Kaspersky Security 8 for Linux Mail Server to connect to the DNS server. If the connection to the DNS server is prohibited, SPF, DKIM, and DMARC Mail Sender Authentication is disabled.

If Kaspersky Security 8 for Linux Mail Server detects violations during SPF, DKIM, or DMARC Mail Sender Authentication, it is considered that SPF, DKIM, or DMARC Mail Sender Authentication has detected authentication violations.

In this Help section

About Mail Sender Authentication statuses

Connecting to a DNS to perform message authentication

Enabling and disabling SPF message authentication

Enabling and disabling DKIM message authentication

Enabling and disabling DMARC message authentication

Enabling and disabling Mail Sender Authentication for a rule

Configuring detection of TempError and PermError during message authentication

Configuring additional DMARC authentication settings for a rule

Configuring additional SPF message authentication settings for a rule

Configuring additional DKIM message authentication settings for a rule

Configuring tags added to message subjects after SPF message authentication

Configuring tags added to message subjects after DKIM message authentication

Configuring tags added to message subjects after DMARC message authentication

Configuring actions on messages during DMARC, SPF and DKIM message authentication

Preparing to configure SPF and DMARC Mail Sender Authentication for outgoing messages
');
Kaspersky Endpoint Security for Business Advanced: Adaptive security of your company
Web and device controls. Data encryption. Centralized and convenient management from a single console.
');
Kaspersky Premium Support (MSA): High‑priority incident processing
Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).