Page 1 of 1

Sending e-mails out of HotelDruid, SPF record

Posted: Mon Mar 14, 2022 11:02 pm
by AndilgE
Hi all,

Our hosting partner reached out to us explaining we will soon have to apply an SPF record for the e-mail addresses with our domain. We do send offers and confirmations e-mails right out of HotelDruid and for simplicity reasons, we need this to be with our reservation department e-mail address as sender. Activating the hosting partners default spf settings will result in the e-mails sent out of HotelDruid being blocked silently, they simply won't be sent to the destiny without any error message.

Has anybody stumbled upon this before and found a solution? I can generate an adapted SPF Record with
https://mxtoolbox.com/SPFRecordGenerator.aspx
and DMARC record with
https://mxtoolbox.com/DMARCRecordGenerator.aspx
as txt files and upload them to our hosting partner's e-mail server configuration, but i simply don't know how to fill in the fields in these generators.

Can you please help us out here @Marco?

Grazie mille, AndilgE

Re: Sending e-mails out of HotelDruid, SPF record

Posted: Thu Mar 17, 2022 7:43 pm
by AndilgE
Catching up on this topic, below same parts out of the message header of an e-mail sent out of HotelDruid being sent to our own e-mail domain. Yup, the rabbit hole is getting deeper:

Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=[REDACTED]; helo=mail.digitaldruid.net; envelope-from=h[REDACTED]@digitaldruid.net; receiver=<UNKNOWN>

I found this default spf record with our hoster
v=spf1 ip4:[REDACTED]/26 -all

and will change to
v=spf1 ip4:[REDACTED]/26 include:digitaldruid.net -all

Note the tilde before all provoking a bind !

If every you start diving into spf records, I strongly recommend you use the spf record validator on
https://www.kitterman.com/spf/validate.html

Re: Sending e-mails out of HotelDruid, SPF record

Posted: Tue Apr 26, 2022 4:17 pm
by marco
Hello,
emails sent from hoteldruid hosting before 3.0.4 were not masquerading with sender email, so SPF was checked against email on the envelope (return-path in email header) that was a digitaldruid.net email, so SPF passed. The problem was with DMARC, as it requires that email "from" and "return-path" are the same (or as an alternative that DKIM passes, but this is not implemented yet on the hosting), so it requires masquerading the email if you don't want it to appear from digitaldruid.net.

With the new version 3.0,4 you can now enable masquerading in "configure and customize" but it will be actually enabled only if SPF in the sender email is correctly configured (authorizing mail.digitaldruid.net server). When you enable masquerading you will be shown how to configure SPF on the domain of the email currently set in "property data" in "configure and customize".

From version 3.0.4 there is also the option to use an external SMTP server to send emails. For example you can use the SMTP offered by your domain registrar, so they'll think about setting SPF, DKIM and DMARC correctly. If you use SMTP from a gmail account then the email "from" will be rewritten to the email of that gmail account (if it was different).

Regards,
Marco

Re: Sending e-mails out of HotelDruid, SPF record

Posted: Wed Jun 15, 2022 3:33 pm
by AndilgE
Yes, that's a much better approach Marco. Why do as if you were something when now you can be that thing :lol:

Another nice benefit of SMTP: If a wrong recepient mail addresse was used, mailer demon notifies the sender. No more resinging these notifs from my mail addresse (I ordered HotelDruid) to the reservation department, cool.