# Sign Your Emails With DKIM
KISREC uses Simple Mail Transfer Protocol (SMTP) to send outgoing email. It uses the email address you use when logging into KISREC to spoof the email sender.
The email is dispatched in this way to make it appear to arrive from your email address. Spoofing email from trusted domains is a popular technique for malicious spam and phishing campaigns so most email servers will detect spoofed email and direct them to the junk/spam folder.
It is highly likely your emails sent from KISREC will end up in the junk/spam folder or even blocked by the destination email server. To resolve this issue you should add the following DNS records to your domain DNS settings. This will activate the DKIM authentication for your outgoing emails.
You will need to be able to access and update your domain DNS settings. If you are unable to access your DNS settings then you should send this article to the person who manages your web site.
## What is DKIM?
DKIM (DomainKeys Identified Mail) is an email security standard designed to make sure messages aren’t altered in transit between the sending and recipient servers. It uses public-key cryptography to sign email with a private key as it leaves a sending server.
Recipient servers then use a public key published to a domain’s DNS to verify the source of the message, and that the body of the message hasn’t changed during transit. Once the signature is verified with the public key by the recipient server, the message passes DKIM and is considered authentic.
While DKIM isn't required, having emails that are signed with DKIM appear more legitimate to your recipients and are less likely to go to Junk or Spam folders. We highly recommend you add a DKIM record to your DNS whenever possible to authenticate mail from your domain
## SPF Record
This is a TXT record that should be added to the domain of the envelope address (yourdomain.com)
```
"v=spf1 a mx include:spf.turbo-smtp.com ?all"
```
If you already have an SPF record then add **include:spf.turbo-smtp.com** to your existing record directly after the segment `v=spf1`
The following is an example where an existing SPF for google already exists and the **include:spf.turbo-smtp.com** has been added
"v=spf1 a mx include:spf.turbo-smtp.com include:_spf.google.com ?all"
## DKIM Record
For DKIM, add the provided TXT record to your domain's DNS settings, which contains the public key used to verify that the emails sent from your domain are indeed legitimate and have not been tampered with during transit.
```
turbo-smtp._domainkey
```
```
"k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDT3MWLni6so1q9eQggRYBCLHFjohZkCnYHH8gZNDBm6zRrodRVpWpJQW7x3cWWiuBhS1X0IfBB80l5tqFa+yc+mVgnk8tkUzOHFbPQPp4fi7egTpMtsQW/ZMrxw73SItNvPr72qvJTYZNPxarMx+ULjEWybcfEdXHPY8jslGcpCwIDAQAB"
```
## DMARC Record
Complete the email authentication process by adding the given DMARC TXT record to your DNS, establishing a policy for how email receivers should treat messages that don't pass SPF or DKIM checks, and thus providing an additional layer of defense against fraudulent email practices.
```
_dmarc
```
Set the value to the following
```
v=DMARC1; p=none;
```
## Popular Domain Providers
Here are some instructions for editing DNS records with popular domain providers. If your service isn't listed here, log in to your provider's site and search their help documents, or contact their customer support team.
Amazon Web Services: [Configuring DNS, Resource Record Types](https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/dns-configuring.html)
Bluehost Bluerock: [Manage DNS Records](https://www.bluehost.com/help/article/dns-management-add-edit-or-delete-dns-entries#add)
Bluehost Legacy: [DNS Management](https://www.bluehost.com/help/article/dns-management-add-edit-or-delete-dns-entries#add)
Dreamhost: [DNS Overview](https://help.dreamhost.com/hc/en-us/articles/215413857-DreamHost-DNS-overview)
GoDaddy: [Add a CNAME Record](https://www.godaddy.com/help/add-a-cname-record-19236)
Google [Domains: DNS Basics](https://support.google.com/a/answer/48090?hl=en)
Hostgator: [Manage DNS records](https://support.hostgator.com/articles/hosting-guide/lets-get-started/dns-name-servers/manage-dns-records-with-hostgatorenom)
Hover: [Edit DNS Record](https://help.hover.com/hc/en-us/articles/217282457-How-to-Edit-DNS-records-A-CNAME-MX-TXT-and-SRV-Updated-Aug-2015-)
IONOS: [Configuring CNAME Records](https://www.ionos.com/help/domains/configuring-cname-records-for-subdomains/configuring-a-cname-record-for-a-subdomain/)
Namecheap: [SPF & DKIM](https://www.namecheap.com/support/knowledgebase/article.aspx/9214/31/cpanel-email-deliverability-tool--spf-and-dkim-records)
Squarespace: [Advanced DNS Settings](https://support.squarespace.com/hc/en-us/articles/205812348-Opening-Advanced-DNS-settings)
Stablehost: [How do I get to cpanel?](https://billing.stablehost.com/index.php?rp=/knowledgebase/12/How-do-I-get-to-cPanel.html)
Wordpress: [Adding Custom DNS Records](https://wordpress.com/support/domains/custom-dns/#adding-custom-dns-records)
Siteground: [Create CNAME Records](https://www.siteground.com/kb/site-tools-vs-cpanel-comparison-create-cname-records/)
Wix: [Adding or updating CNAME Records](https://support.wix.com/en/article/adding-or-updating-cname-records-in-your-wix-account)
If you require any assistance then please do not hesitate to get in touch.
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.kisrec.com/setup-your-account/sign-your-emails-with-dkim.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.