SpoofCheck
🇫🇷Free email security analysis

Results for melexis.com

63C
This domain is vulnerable to spoofing

SPF

Warning
v=spf1 a ip4:216.122.144.188 ip4:194.7.162.249 ip4:217.73.9.211 ip4:217.73.9.212 ip4:217.73.9.213 ip4:217.73.9.214 ip4:217.73.9.215 ip4:217.73.9.216 ip4:217.73.9.217 ip4:52.174.156.95 ip4:148.59.100.16/28 ip4:148.59.101.16/28 ip4:3.123.206.219 ip4:3.68.129.51 ip4:3.105.238.148 ip4:3.106.50.25 ip4:18.180.127.81 ip4:54.64.30.13 ip4:35.181.156.191 ip4:13.36.253.151 ip4:5.236.171.222 ip4:3.37.17.159 ip4:172.205.219.61 ip4:20.8.174.213 include:_spf.google.com include:_spf.salesforce.com include:spf.flexmail.eu include:aspmx.pardot.com include:spf_c.oraclecloud.com include:_spf.firebasemail.com include:eu.rp.oracleemaildelivery.com ~all
Read the guide

DKIM

OK
Selectors: google, default, s1, s2

DMARC

Warning
v=DMARC1; p=none; rua=mailto:dmarc-reports@melexis.com
Read the guide

MX

OK
aspmx.l.google.com, alt2.aspmx.l.google.com, alt1.aspmx.l.google.com, alt3.aspmx.l.google.com, alt4.aspmx.l.google.com

MTA-STS

Missing

No record found

Read the guide

Recommendations

  1. 1Change your DMARC policy from p=none to p=reject to block spoofing

    With p=none, your DMARC record only monitors — it doesn't actually block spoofed emails. Attackers can still send emails as your domain and they'll be delivered normally. Switching to p=reject instructs receiving servers to drop fraudulent messages before they reach the inbox.

  2. 2Harden your SPF by replacing ~all with -all (hardfail)

    With ~all (softfail), unauthorized senders are flagged but emails are usually still delivered. Switching to -all (hardfail) explicitly tells receiving servers to reject emails from unauthorized sources, providing much stronger protection against spoofing.

  3. 3Add MTA-STS to enforce TLS encryption for incoming emails

    Without MTA-STS, an attacker performing a man-in-the-middle attack can downgrade the connection between mail servers to plaintext, intercepting emails in transit. MTA-STS tells sending servers to only deliver via TLS with a valid certificate, preventing downgrade attacks.

Need help securing your domain?

If you're not sure how to apply these fixes, get in touch and we'll help you out.

Contact us
Check another domain

Badge for your website

Display your email security score on your website.

SpoofCheck badge for melexis.com
<a href="https://spoofchecker.online/en/email-security/melexis.com" target="_blank" rel="noopener"><img src="https://spoofchecker.online/api/badge/melexis.com?score=63&grade=C" alt="Email security score for melexis.com" height="28"></a>