From 41988ae418c286452b83004ed76dc1ccf6e448da Mon Sep 17 00:00:00 2001 From: M66B Date: Sun, 28 Jul 2024 07:27:05 +0200 Subject: [PATCH] Updated FAQ --- FAQ.md | 3 ++- index.html | 3 ++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/FAQ.md b/FAQ.md index 92221a6e25..185cb32a7c 100644 --- a/FAQ.md +++ b/FAQ.md @@ -3496,9 +3496,10 @@ You can enable/disable [authentication verification](https://en.wikipedia.org/wi The feature depends on the header [Authentication-Results](https://datatracker.ietf.org/doc/html/rfc7601), which the receiving email server should add. The shield will be green only if DMARC passes (=alignment) and either [SPF](https://en.wikipedia.org/wiki/Sender_Policy_Framework) or [DKIM](https://en.wikipedia.org/wiki/DomainKeys_Identified_Mail) passes. + If the email server doesn't add an *Authentication-Results* header, which is optional, you can enable native DKIM in the debug panel, which appears when you enable debug mode in the miscellaneous settings tab page (last option). -In this case, the shield will be green only when DKIM passes and the signer domain matches that of the sender. +In this case, the shield will be green only when DKIM passes and the signer domain matches that of the sender (=alignment). Please be aware that this option will increase both data and battery usage. FairEmail can show a warning flag too if the domain name of the (reply) email address of the sender does not define an MX record pointing to an email server. diff --git a/index.html b/index.html index 1528bb364c..f4ccda39c2 100644 --- a/index.html +++ b/index.html @@ -1876,7 +1876,8 @@ Y1 OK CAPABILITY completed

Note that a sender will automatically be blocked when a message is moved into the spam folder. You can disable this behavior by disabling the option Automatically block the sender when reporting spam in the behavior settings tab page.

Since version 1.2143, there is an “Unblock all” button in the receive-settings tab page, which will reset all above options.

If you receive a lot of spam messages in your inbox, the best you can do is to contact the email provider to ask if spam filtering can be improved.

-

Also, FairEmail can show a small red warning flag when DKIM, SPF or DMARC authentication failed on the receiving server. You can enable/disable authentication verification in the display settings. The feature depends on the header Authentication-Results, which the receiving email server should add. The shield will be green only if DMARC passes (=alignment) and either SPF or DKIM passes. If the email server doesn’t add an Authentication-Results header, which is optional, you can enable native DKIM in the debug panel, which appears when you enable debug mode in the miscellaneous settings tab page (last option). In this case, the shield will be green only when DKIM passes and the signer domain matches that of the sender. Please be aware that this option will increase both data and battery usage.

+

Also, FairEmail can show a small red warning flag when DKIM, SPF or DMARC authentication failed on the receiving server. You can enable/disable authentication verification in the display settings. The feature depends on the header Authentication-Results, which the receiving email server should add. The shield will be green only if DMARC passes (=alignment) and either SPF or DKIM passes.

+

If the email server doesn’t add an Authentication-Results header, which is optional, you can enable native DKIM in the debug panel, which appears when you enable debug mode in the miscellaneous settings tab page (last option). In this case, the shield will be green only when DKIM passes and the signer domain matches that of the sender (=alignment). Please be aware that this option will increase both data and battery usage.

FairEmail can show a warning flag too if the domain name of the (reply) email address of the sender does not define an MX record pointing to an email server. This can be enabled in the receive settings. Be aware that this will slow down synchronization of messages significantly.

If the domain name of the sender and the domain name of the reply address differ, the warning flag will be shown too because this is most often the case with phishing messages. If desired, this can be disabled in the receive settings (since version 1.1506).

If legitimate messages are failing authentication, you should notify the sender because this will result in a high risk of messages ending up in the spam folder. Moreover, without proper authentication there is a risk the sender will be impersonated. The sender might use this tool to check authentication and other things.