On 23 January 2024 we began publishing default SPF and DMARC DNS records for domains that use Opalstack's DNS and mail systems.
The default policies that we published were somewhat restrictive and were causing mail sent from some customer domains to go to spam so we've made the following changes to the policies:
- The policy for SPF has been changed from hard fail "-all" to soft fail "~all".
- The policy for DMARC has been changed from "quarantine" to "none".
The net result of these changes is that customer mail is still compliant with SPF and DMARC but with a less-restrictive policy to help legitimate mail arrive in your inbox.
