Shipsafershipsafer.ai
ShipSafer
Scan a site
Email Security

SPF

Sender Policy Framework (SPF) is an email authentication method that specifies which mail servers are authorized to send email on behalf of a domain. It is implemented as a DNS TXT record listing permitted sending IPs or domains. When a receiving server checks SPF, it verifies the sending server's IP against the domain's SPF record. An SPF failure can cause emails to land in spam or be rejected, and without SPF, attackers can easily spoof your domain.

Official documentation

Why it matters for your website

  • 1Prevents your domain from being used in phishing and spoofing attacks
  • 2Required for email deliverability to Gmail, Yahoo, and major providers
  • 3Missing records are flagged as high-severity findings in security audits

Check your site for SPF issues

Run a free scan to see if your domain has any SPF-related vulnerabilities or misconfigurations.

Related Terms

Browse Glossary

View all 85 terms

Free Security Scan

See your SSL, headers, CORS, DNS, and email security score in seconds.