Stats
Actions
Tags
Guides phased DMARC policy rollout from p=none monitoring to p=quarantine then p=reject, authenticating legitimate email via SPF/DKIM before blocking spoofed senders.
How this skill is triggered — by the user, by Claude, or both
Slash command
/cybersecurity-skills-zh:performing-dmarc-policy-enforcement-rolloutThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
基于域名的消息认证、报告和一致性(DMARC)是邮件防欺骗保护的基石。DMARC 推进经历三个阶段:监控(p=none)、隔离(p=quarantine)和完全执行(p=reject)。配置为 p=reject 时,同时未通过 SPF 和 DKIM 检查的任何邮件都将被直接拒绝。Google 和 Yahoo 现在要求批量发件人(5000 封以上邮件)使用 DMARC,推动未认证消息减少了 65%。安全部署通常需要 3-6 个月。
基于域名的消息认证、报告和一致性(DMARC)是邮件防欺骗保护的基石。DMARC 推进经历三个阶段:监控(p=none)、隔离(p=quarantine)和完全执行(p=reject)。配置为 p=reject 时,同时未通过 SPF 和 DKIM 检查的任何邮件都将被直接拒绝。Google 和 Yahoo 现在要求批量发件人(5000 封以上邮件)使用 DMARC,推动未认证消息减少了 65%。安全部署通常需要 3-6 个月。
| 策略 | 行为 | 使用场景 |
|---|---|---|
| p=none | 仅监控,对失败不采取操作 | 发现阶段 |
| p=quarantine | 将失败邮件发送到垃圾邮件/垃圾箱 | 过渡阶段 |
| p=reject | 完全封锁失败邮件 | 完全执行 |
v=DMARC1; p=quarantine; pct=25; rua=mailto:[email protected]; ruf=mailto:[email protected]; adkim=r; aspf=r; fo=1
v=DMARC1; p=none; rua=mailto:[email protected]; fo=1v=DMARC1; p=quarantine; pct=10; rua=...v=DMARC1; p=reject; pct=10; rua=...sp=rejectnpx claudepluginhub killvxk/cybersecurity-skills-zhExecute a phased DMARC rollout from p=none monitoring through p=quarantine to p=reject enforcement, ensuring all legitimate email sources are authenticated before blocking unauthorized senders.
Executes phased DMARC rollout from p=none monitoring to p=reject enforcement, authenticating legitimate email sources via SPF/DKIM before blocking spoofed senders. For email security audits.
Executes phased DMARC rollout from p=none monitoring to p=reject enforcement, authenticating legitimate email senders via SPF/DKIM before blocking spoofed messages. For security audits and phishing defense.