SpoofCheck

zendesk.com email security: SPF, DKIM & DMARC

Is zendesk.com spoofable? See zendesk.com's SPF, DKIM, DMARC and MTA-STS records and find out if this domain is protected against email spoofing.

Last updated: June 3, 2026

85B
This domain is protected against spoofing

SPF

OK
v=spf1 ip4:103.151.192.0/23 ip4:104.43.243.237 ip4:149.97.173.180 ip4:163.116.128.0/17 ip4:170.10.128.0/24 ip4:170.10.129.0/24 ip4:170.10.132.56/29 ip4:170.10.132.64/29 ip4:170.10.133.0/24 ip4:18.194.95.56 ip4:18.198.96.88 include:_spf1.zendesk.com ~all

DKIM

OK
Selectors: k1, mandrill, s1, s2, zendesk1, zendesk2

DMARC

OK
v=DMARC1; p=reject

MX

OK
us-smtp-inbound-1.mimecast.com, us-smtp-inbound-2.mimecast.com, aspmx.l.google.com, alt2.aspmx.l.google.com, alt1.aspmx.l.google.com, aspmx2.googlemail.com

MTA-STS

Missing

No record found

Read the guide

Recommendations

  1. 1Add rua=mailto:dmarc@yourdomain to your DMARC to receive reports

    Without DMARC reporting (rua=), you have no visibility into who is sending email on behalf of your domain. Aggregate reports let you detect spoofing attempts, identify misconfigured legitimate senders, and confidently tighten your policy over time.

  2. 2Add MTA-STS to enforce TLS encryption for incoming emails

    Without MTA-STS, an attacker performing a man-in-the-middle attack can downgrade the connection between mail servers to plaintext, intercepting emails in transit. MTA-STS tells sending servers to only deliver via TLS with a valid certificate, preventing downgrade attacks.

Run a live analysis

The results above are updated daily. For an instant check of zendesk.com, run a live analysis.

Analyze zendesk.com live

Frequently asked questions about zendesk.com

Is zendesk.com spoofable?

No. zendesk.com is protected against email spoofing with a robust configuration. Email security score: 85/100 (grade B).

Does zendesk.com have an SPF record?

Yes, zendesk.com publishes an SPF record (~all qualifier).

What is zendesk.com's DMARC record?

zendesk.com publishes a DMARC record (_dmarc.zendesk.com) with a p=reject policy.

Does zendesk.com use DKIM?

Yes, DKIM signatures were detected for zendesk.com.

Want to test another domain? Run a free email spoofing test.

Guides to understand these results

SPF Guide

Understand how SPF defines which servers are authorized to send emails for a domain.

DKIM Guide

Discover how DKIM cryptographically signs your emails to guarantee their authenticity.

DMARC Guide

Learn how DMARC orchestrates SPF and DKIM to protect your domain.

MTA-STS Guide

Learn how MTA-STS enforces TLS encryption to protect your emails in transit.

SPF vs DKIM vs DMARC

Compare the three protocols and understand how they work together.

Check other domains

intercom.comwebflow.comairtable.comclickup.combox.comcalendly.com