Results for tsa.com
Analysis performed on April 15, 2026 at 03:06 PM
82B
This domain is protected against spoofing
SPF
OKv=spf1 include:spf.ess.barracudanetworks.com include:mailsenders.netsuite.com include:sent-via.netsuite.com include:mail.zendesk.com include:_spf.safewebservices.com include:md02.com include:spf.protection.outlook.com ip4:99.69.170.9/29 ip4:24.197.13.54/32 ip4:64.132.201.93/32 ip4:74.203.211.13/32 ip4:207.67.44.189/32 ip4:3.145.232.16/28 -allDKIM
OKSelectors: selector2, k1, s1, s2, zendesk1, zendesk2DMARC
Warningv=DMARC1; p=quarantine; fo=1; rua=mailto:rua+tsa.com@dmarc.barracudanetworks.com; ruf=mailto:ruf+tsa.com@dmarc.barracudanetworks.comRead the guide
MX
OKd154800a.ess.barracudanetworks.com, d154800b.ess.barracudanetworks.comRecommendations
1Upgrade your DMARC policy from p=quarantine to p=reject for full blocking
With p=quarantine, spoofed emails are sent to spam instead of being blocked outright. Some recipients still check spam folders, and sophisticated attacks can be flagged as legitimate by users. p=reject ensures fraudulent emails never reach any folder.
2Add MTA-STS to enforce TLS encryption for incoming emails
Without MTA-STS, an attacker performing a man-in-the-middle attack can downgrade the connection between mail servers to plaintext, intercepting emails in transit. MTA-STS tells sending servers to only deliver via TLS with a valid certificate, preventing downgrade attacks.
Badge for your website
Display your email security score on your website.
<a href="https://spoofchecker.online/en/email-security/tsa.com" target="_blank" rel="noopener"><img src="https://spoofchecker.online/api/badge/tsa.com?score=82&grade=B" alt="Email security score for tsa.com" height="28"></a>