Email security often sounds more complicated than it needs to. For most small businesses, the practical goal is simple: make it harder for someone else to send fake email that appears to come from your domain, and make sure your real mail is configured cleanly.
Three DNS-based controls matter: SPF, DKIM and DMARC.
SPF
SPF lists which mail systems are allowed to send email for your domain. It is useful, but it can become messy when old marketing platforms, website forms or previous email providers remain in the record.
DKIM
DKIM adds a signature to outgoing mail so receiving systems can check whether the message was authorised by your domain. Microsoft 365, Google Workspace and many hosted mail providers support DKIM, but it is not always enabled correctly.
DMARC
DMARC tells receiving mail systems what to do when SPF or DKIM checks fail. It can also provide reports that help identify spoofing or configuration problems.
DMARC should be introduced carefully. Jumping straight to a strict policy without checking legitimate senders can interrupt real business email.
Why this matters
Poor email authentication can affect trust, deliverability and spoofing risk. For businesses that send invoices, handle client documents or depend on referrals, that is a practical business issue rather than a technical footnote.
Get your domain checked
Solway Web Consulting provides email security and DMARC setup for Sydney CBD and inner suburbs small businesses, including SPF, DKIM, DMARC, DNS hygiene and administrator access recommendations.
Check your domain and email security
Tags: security, small-business, email-security, sydney