Add default DKIM selector, note about dynamic selectors, TXT example
This commit is contained in:
parent
ada63855c0
commit
58212611ba
28
README.md
28
README.md
@ -1,8 +1,8 @@
|
|||||||
# email_dns.py
|
# email_dns.py
|
||||||
|
|
||||||
A simple Python script to resolve all email-related DNS records for a domain
|
A Python script to resolve email-related DNS records for a domain.
|
||||||
|
|
||||||
Example
|
Example:
|
||||||
|
|
||||||
```
|
```
|
||||||
$ python email_dns.py cbarts.net
|
$ python email_dns.py cbarts.net
|
||||||
@ -18,18 +18,32 @@ $ python email_dns.py cbarts.net
|
|||||||
"preference": "20"
|
"preference": "20"
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"spf": "v=spf1 include:_spf.protonmail.ch mx -all",
|
"spf": "v=spf1 a include:spf.protection.outlook.com -all",
|
||||||
"dkim": [
|
"dkim": [
|
||||||
{
|
{
|
||||||
"type": "CNAME",
|
"application": "not specified",
|
||||||
"value": "protonmail.domainkey.d54jb2xmwmmyjawzyztmko2lix3f4dz4uwu2rptmnailfrd6hqgeq.domains.proton.ch."
|
"selector": "default",
|
||||||
|
"type": "TXT",
|
||||||
|
"value": "v=DKIM1; k=rsa; p=MIIBI...;"
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
"application": "exchange",
|
||||||
|
"selector": "selector1",
|
||||||
"type": "CNAME",
|
"type": "CNAME",
|
||||||
"value": "protonmail2.domainkey.d54jb2xmwmmyjawzyztmko2lix3f4dz4uwu2rptmnailfrd6hqgeq.domains.proton.ch."
|
"value": "selector1-contoso-com._domainkey.contoso.onmicrosoft.com."
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"application": "exchange",
|
||||||
|
"selector": "selector2",
|
||||||
|
"type": "CNAME",
|
||||||
|
"value": "selector2-contoso-com._domainkey.contoso.onmicrosoft.com."
|
||||||
}
|
}
|
||||||
],
|
],
|
||||||
"dmarc": "v=DMARC1; p=quarantine; rua=mailto:admin@cbarts.net,mailto:86be0037@mxtoolbox.dmarc-report.com; ruf=mailto:admin@cbarts.net,mailto:86be0037@forensics.dmarc-report.com"
|
"dmarc": "v=DMARC1; p=quarantine; adkim=s; aspf=s; fo=1; ri=3600;"
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
```
|
```
|
||||||
|
|
||||||
|
## Limitations
|
||||||
|
|
||||||
|
Applications with *dynamic* selector names will not be detected, e.g. smtp2go (`s12345._domainkey.<domain>`)
|
||||||
@ -6,8 +6,9 @@ import re
|
|||||||
import json
|
import json
|
||||||
|
|
||||||
dkim_selectors = { # <selector>._domainkey.<domain>
|
dkim_selectors = { # <selector>._domainkey.<domain>
|
||||||
'none': [
|
# Applications with dynamic selector names will not be detected, e.g. smtp2go (s12345._domainkey.<domain>)
|
||||||
'dkim'
|
'not specified': [
|
||||||
|
'dkim', 'default'
|
||||||
],
|
],
|
||||||
'google': [
|
'google': [
|
||||||
'google'
|
'google'
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user