Differences

This shows you the differences between two versions of the page.

--- faq:email:can_i_allow_spoof [2022/02/16 11:24] – created vikki
+++ faq:email:can_i_allow_spoof [2025/03/10 11:42] (current) – vikki
@@ Line 3: / Line 3: @@
 ====== Can I allow spoof for my domain's email? ======
-Yes - but we **DO NOT** recommend this - as allowing spoof means accepting emails that are sent from an unauthorised party (spammers/hackers) using the identity of your email domain or user account.
+|<fc #ff0000>**Note:**</fc> The "Allow spoof email" option has been deprecated following [[https://lookafter.com/blog/spf-policy-update-2025-03-10/|our SPF policy update in March 2025]], as part of our efforts to enhance email security and prevent spoofing attacks.|
-This puts your users at higher risk of cyberattacks - imagine someone disguising as your colleague's email address and send you an email, attaching with a seemingly legitimate file attachment. Without any doubt, you download the attachment, only to find out that it contains virus - but it is too late as the virus has already started attacking your system.
+**Question: Can I allow spoof for my domain's email?**
-Some users may want to allow spoof as they are using third-party SMTP IP (e.g. mass marketing tool/system) to send emails, where the incoming emails will be identified as spoof. For such cases, instead of allowing spoof, we suggest to configure SPF to include the third-party SMTP IP.
+No, spoofing is not allowed. If you need to receive emails sent from your own domain via third-party email servers, please consult your avomaster/voadmin to update your SPF record to include those servers.
-If you are aware of the risks, you can allow spoof by logging in to the VO portal as administrator (Avomaster/voadmin), go to Profile > Admin > SMTP settings, and select "Yes" for the "Allow spoof mail" option.
+For further questions and assistance, feel free to contact [[helpdesk@lookafter.com]].

AGNX

User Tools

Site Tools

Differences

Page Tools