How's your email doing?

Are your policies effective in preventing spam, phising, and fraud?

The good reputation of your domain's email is a prime target for abuse. By setting up the correct policies for your domain you can make this damaging exploitation significantly harder and therefore much less likely.

DMARClite gives you full featured, cost effective, DMARC tools and analysis for small business.

The goal here is 'Set and Forget'!

DMARC for big business needs complex solutions and monitoring - or an IT department. Fortunately, for a small business its mostly a 'set and forget' situation. Once your policies are up and running you can leave them to do their thing.

Set

Wizards make light work of setting up your SPF, DKIM and DMARC policies*.

Monitor

Our tools give you insightful snapshots on how well your policies are performing.

Forget

A quick tweak (if needed) and the job's done. Save money, turn dmarclite off.

*If you're not quite sure what SPF, DKIM, or DMARC are, then you're not alone. Check out our faqs for some 'low-tech' explanations.

Our wizards will have you up and running in no time.

By guiding you through any complex requirements wizards take the guesswork out of creating your SPF, DKIM, and DMARC policies.

Once you have your policies published we can pre-fill out the the wizards for you, making any future adjustments almost effortless.

What's in the toolbox?

How's your SPF?

Are the email senders authorised? Accept, reject, quarantine? We'll show you what's been going on.

  • Start date picker to select 7 day period
  • Hover columns for detail
  • Hover labels to highlight
  • Click labels to hide/show columns

If you're wondering what's an spf check the faq below

DKIM Analysis

DKIM doing its thing?

Are emails signed? Is the signature valid? Has the content been tampered with? Accept or reject? Its all here.

  • Start date picker to select 7 day period
  • Hover columns for detail
  • Hover labels to highlight
  • Click labels to hide/show columns

If you're wondering what's a DKIM check the faq below

The origins of spam?

Although you can't do much with the geo view information, it does reveal some fascinating facts about where email and the potential spam is coming from

  • Top 25 countries displayed
  • Hover country for detail

The top originating IPs.

The top IPs should be yours or organisations sending on your behalf. If not then hopefully your policies are preventing the bogus emails.

  • Start date picker to select 7 day period
  • Click columns to sort
  • Search tables
  • Download data as csv, xls or pdf
  • Click IP for in-depth information*
*Additional charge (1 credit) applies.

Record Data.

The data extracted from the reports, in an easy to read table.

  • Start date picker to select 7 day period
  • Click columns to sort
  • Search tables
  • Download data as csv, xls or pdf
  • Click IP for in-depth information*
*Additional charge (1 credit) applies.

Raw XML.

This is the full unedited report, as received from the reporting organisations. It is not very exciting, but if you're having trouble sleeping then this may be for you.

  • Downloadable - coz we can!
  • Also has Start date picker to select 7 day period

Pricing

Its basically pay-as-you-go.

14 Credits

£1
  • No Contracts
  • No monthly minimums
  • Credits never expire
  • You control the spending

56 Credits

£3
  • No Contracts
  • No monthly minimums
  • Credits never expire
  • You control the spending

200 Credits

£8
  • No Contracts
  • No monthly minimums
  • Credits never expire
  • You control the spending

One simple slider.

The Analyse Slider
Analyse slider

Select daily analysis of 0 to 1000 records which costs 0 to 5 credits a day, charged on a daily basis.

The monthly cost shown is a guide price and is dependant on actual credit costs

DMARClite was built by a small business owner, for small business owners.

I've been running my own email server since 2003 and I knew I ought to get on top of this DMARC stuff. There were some very powerful (and expensive) solutions for the big corporations, but I couldn't find anything that addressed the needs of a small business owner such as myself.

Capacity?

Do I need 100,000 to 5 million records analysed each month? No, on average I'm only receiving 300-400 records per day.

Contract?

Do I really need a 12 month contract and a monthly fee? No, my setup rarely changes, once I'm done, I'm done.

Experience?

Well, I've been in IT for 41 years now. How hard can it be? Challenge Accepted!

I wonder...

Now I've built this thing, are others in the same situation? Maybe they'd like to use this set of tools?

Curious? Ready to take a test drive?

Put the credit card away, we'll give you 14 free credits to get you going.

OK, time we answered your FAQs

What is a DMARC?
Domain-based Message Authentication, Reporting and Conformance ...Catchy huh?

Published in your DNS records, a DMARC record is a simple line of text that defines :

  • What to do if a message claiming to be from your domain fails your SPF policy.
  • What to do if a message claiming to be from your domain fails DKIM signature verification.
  • Where to send reports on what action was taken when following these instructions.

A typical DMARC record looks like this:

"v=DMARC1;p=reject;pct=100;aspf=r;adkim=r;rua=mailto:rua@yourdomain.com;fo=1:s:d" 

With this one little line of code you get feedback enabling you to see who is doing what with your email.

What's an SPF?
Sender Policy Framework

Published in your DNS records, an SPF record is a simple line of text that defines :

  • IP addresses authorised to send email for your domain. e.g. 198.51.100.123
  • 'A' records authorised to send email for your domain. e.g. mail.example.com

A typical SPF record looks like this:

"v=spf1 mx a ip4:198.51.100.123 a:mail.yourdomain.com include:smtp.your_isp.com a -all"

With this one little line of code you can prevent 90% of attempted spam associated with your domain.

What's a DKIM?
Domain Keys Identified Mail

A small block of encrypted data is inserted into the email header by the sending email server using a secret key.
The data contains items such as:

  • The email's From address
  • The email's To address
  • The email's Subject
  • The email's size

Published in your DNS records, the DKIM record contains the unlock key for the block of encrypted data.

A typical DKIM record looks like this:

"v=dkim1 p=MIGeMA0GCSqGSIb3DQEBAQUAA4GMADCBiAKBgGwNjJb4vNPfRT4XOPbhmCBNAjodD"

Using the DKIM key, the block of encrypted data is unlocked. The unlocked data is then compared with the non-encrypted information in the email header. If the email has been tampered with then the DKIM comparison will fail.

What's a BIMI?
Brand Indicators for Message Identification
BIMI

Published in your DNS records, a BIMI record is simple line of text that defines :

  • The location of the true and authentic branding logo for your domain .
  • The location of any alternate branding logos your sub domains should use.

A typical BIMI record looks like this:

"v=bimi1 l=https://www.example.com/images/yourlogo.svg"

Bimi is a relatively new concept (February 2019), as such not all email clients support BIMI yet.
The logo image must be in a .svg or .svgz format, this can be an issue small business who's logos are usually in a .png or .jpg format.

For these reason we recommend leaving BIMI to the big corporations. For now use a Gravatar instead. Gravatars are much simpler to setup and are currently much more widely supported by email clients, they're also free. Visit www.gravatar.com to get setup - it only takes a couple of minutes to do and you have to agree, it does look rather professional.

eBay logo © eBay Inc | eM Client logo © eM Client

What's a DNS?
Domain Name System

When it was invented, the internet was tied together by the telephone companies. And just like every telephone has a telephone number, internet resources (pc's, servers, phones, etc) were given resource numbers - we call them IP addresses.

Because humans are not good at remembering numbers, it was decided internet resources should have a human friendly name known as 'domain names'. And, there would be a set of lookup tables to translate these domain names into their respective IP addresses, these are called 'DNS servers'.
Example:

  • IP addresses of your website 198.51.100.123
  • Human readable address of your server example.com

By adding suffixes to domain names we can further point to other resources under our control without having to create an etirely new name.

  • Domain name example.com points to 198.51.100.123
  • Domain name mail.example.com points to 198.51.100.124
Can I try without having to pay?
Absolutely! Create an account and we'll give you 14 credits to try it out with.
Is this a subscription service?
This is a pay-as-you-go service. There are no contracts, there's no monthly fees, and there's no minimum spend.
What if I need more than 1000 records analysing each day?

We are 'DMARC lite'. What you are looking for is more 'DMARC heavy-duty'.

These fine providers will be able to help you.

Best Value
easydmarc.com
Best Interface
dmarcly.com
Best All-rounder
dmarcian.com
Why do you charge for the in-depth IP information?

Detailed information like this is not free, we have to buy it in from specialist providers on a per IP address basis.

Theoretically, we could save the data, but as the internet is such a dynamic environment it could quickly become out of date.

What about DAMRC forensic reports?
Most email providers simply don't produce the 'ruf' forensic reports, its just too resource hungry. So, for every 1000 aggregate reports you receive there may be just one or two forensic reports. As such, the forensic reports are so few and far between its just not possible to create any meaningful statistics from such little data.

Get in touch!

If you've any questions not covered by the FAQ then please send us a message.