SpoofCheck

20minutes.fr email security: SPF, DKIM & DMARC

Is 20minutes.fr spoofable? See 20minutes.fr's SPF, DKIM, DMARC and MTA-STS records and find out if this domain is protected against email spoofing.

Last updated: June 3, 2026

67C
This domain is protected against spoofing

SPF

Warning
v=spf1 ip4:217.195.17.74 ip4:217.195.17.75 ip4:62.210.175.180 include:_spf.google.com include:amazonses.com include:mail.zendesk.com include:spf.mailjet.com ~all
Read the guide

DKIM

OK
Selectors: google

DMARC

Warning
v=DMARC1; p=quarantine;
Read the guide

MX

OK
aspmx.l.google.com, alt1.aspmx.l.google.com, alt2.aspmx.l.google.com, alt4.aspmx.l.google.com, alt3.aspmx.l.google.com

MTA-STS

Missing

No record found

Read the guide

Recommendations

  1. 1Upgrade your DMARC policy from p=quarantine to p=reject for full blocking

    With p=quarantine, spoofed emails are sent to spam instead of being blocked outright. Some recipients still check spam folders, and sophisticated attacks can be flagged as legitimate by users. p=reject ensures fraudulent emails never reach any folder.

  2. 2Add rua=mailto:dmarc@yourdomain to your DMARC to receive reports

    Without DMARC reporting (rua=), you have no visibility into who is sending email on behalf of your domain. Aggregate reports let you detect spoofing attempts, identify misconfigured legitimate senders, and confidently tighten your policy over time.

  3. 3Harden your SPF by replacing ~all with -all (hardfail)

    With ~all (softfail), unauthorized senders are flagged but emails are usually still delivered. Switching to -all (hardfail) explicitly tells receiving servers to reject emails from unauthorized sources, providing much stronger protection against spoofing.

  4. 4Add MTA-STS to enforce TLS encryption for incoming emails

    Without MTA-STS, an attacker performing a man-in-the-middle attack can downgrade the connection between mail servers to plaintext, intercepting emails in transit. MTA-STS tells sending servers to only deliver via TLS with a valid certificate, preventing downgrade attacks.

Need help securing your domain?

If you're not sure how to apply these fixes, get in touch and we'll help you out.

Contact us

Run a live analysis

The results above are updated daily. For an instant check of 20minutes.fr, run a live analysis.

Analyze 20minutes.fr live

Frequently asked questions about 20minutes.fr

Is 20minutes.fr spoofable?

No. 20minutes.fr is protected against email spoofing with a robust configuration. Email security score: 67/100 (grade C).

Does 20minutes.fr have an SPF record?

Yes, 20minutes.fr publishes an SPF record (~all qualifier).

What is 20minutes.fr's DMARC record?

20minutes.fr publishes a DMARC record (_dmarc.20minutes.fr) with a p=quarantine policy.

Does 20minutes.fr use DKIM?

Yes, DKIM signatures were detected for 20minutes.fr.

Want to test another domain? Run a free email spoofing test.

Guides to understand these results

SPF Guide

Understand how SPF defines which servers are authorized to send emails for a domain.

DKIM Guide

Discover how DKIM cryptographically signs your emails to guarantee their authenticity.

DMARC Guide

Learn how DMARC orchestrates SPF and DKIM to protect your domain.

MTA-STS Guide

Learn how MTA-STS enforces TLS encryption to protect your emails in transit.

SPF vs DKIM vs DMARC

Compare the three protocols and understand how they work together.

Check other domains

mediapart.frbfmtv.comfrancetvinfo.frnytimes.comtheguardian.combbc.co.uk