Which DNS record is used to publish a policy that combines SPF and DKIM results to handle unauthenticated emails?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the CCST Cybersecurity Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which DNS record is used to publish a policy that combines SPF and DKIM results to handle unauthenticated emails?

Explanation:
DMARC is the mechanism that lets a domain publish a policy for what to do with emails that fail SPF or DKIM checks and don’t align with the From header. It sits on top of SPF and DKIM, using their results plus alignment to decide actions such as none, quarantine, or reject. The policy is published in DNS as a TXT record under the _dmarc subdomain of the domain, typically starting with v=DMARC1 and including the p= policy and optional reporting and alignment settings. SPF and DKIM by themselves verify provenance; DMARC ties those results together and tells receivers how to handle messages that don’t pass authentication.

DMARC is the mechanism that lets a domain publish a policy for what to do with emails that fail SPF or DKIM checks and don’t align with the From header. It sits on top of SPF and DKIM, using their results plus alignment to decide actions such as none, quarantine, or reject. The policy is published in DNS as a TXT record under the _dmarc subdomain of the domain, typically starting with v=DMARC1 and including the p= policy and optional reporting and alignment settings. SPF and DKIM by themselves verify provenance; DMARC ties those results together and tells receivers how to handle messages that don’t pass authentication.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy