Email Forwarding: why it's important to have SRS configured


How we protect you from email spoofing


Namecheap strives to protect you from spammers and those who want to deceive you by sending emails on our behalf. That’s why we’re implementing strict SPF and DMARC rules for namecheap.com. These records help to prevent the forgery of our email address, limiting the number of servers that are authorized to send messages associated with namecheap.com.

At the same time, if you have email forwarding set up for your mailbox, SPF and DMARC records might influence deliveries from @namecheap.com email addresses. The destination server may reject our messages treating the forwarding server not as an intermediary but as the sender.

Let’s have a closer look at this process.

For example, let’s say you have user@test1.tld mailbox that forwards your mail to user@test2.tld.

Namecheap sends you a message from hello@namecheap.com to user@test1.tld.

In this case, the email delivery process consists of two steps:

  1. Email gets delivered from hello@namecheap.com to user@test1.tld;
  2. user@test1.tld forwards an incoming message to user@test2.tld. Meanwhile, hello@namecheap.com remains the sender.
When receiving the email, test2.tld server spots the namecheap.com SPF record and analyzes whether it is in violation or not. During this process, the server finds out an additional chain caused by email forwarding (Step 2). Since this service has no relation to namecheap.com, the test2.tld server decides that the email is spoofed and rejects it.


How to know when to take action


First of all, pay attention to the mailbox associated with your Namecheap account. If you don’t have an email forwarding set up for it, there’s nothing to worry about.


What to do if you use a third-party email forwarding service


The Sender Rewriting Scheme (SRS) is a solution for servers responsible for forwarding. It helps to modify the sender’s email address and keep it associated with the message at the same time so that email is successfully delivered to the destination mailbox without breaking the SPF record.

In case the SRS is installed for your third-party forwarding server, an email from us will have a certain entry in the header.


Configuring the SRS requires administrative privileges. This means it’s the responsibility of the email service provider to perform this type of step. If you need to configure the SRS for your forwarding server, please contact your email administrator or look for SRS software (e.g., PostSRSd) for your email server.

If you are an email administrator, please consider configuring the Sender Rewriting Scheme (SRS) on your Message Transfer Agent (MTA).

Updated
1/29/2020

Viewed
3545 times

Comments

We welcome your comments, questions, corrections and additional information relating to this article. Your comments may take some time to appear. Please be aware that off-topic comments will be deleted.

If you need specific help with your account, feel free to contact our Support Team. Thank you.

Need help? We're always here for you.

× Close