Skip to content
← Back to Vulnerability Database
MEDIUMCWE-345Email Security

DKIM Not Configured

Description

Your domain lacks DKIM (DomainKeys Identified Mail) signing, meaning outgoing emails cannot be cryptographically verified as authentic.

How Vezraa Detects It

We query your DNS for DKIM selector records (e.g., google._domainkey.yourdomain.com).

Real-World Impact

Your legitimate emails may land in spam folders, and attackers can forge your email without detection.

Fix Example

// Add DKIM record for Google Workspace:
Host: google._domainkey
Value: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC...

Affected Stacks

DNSEmail

References

Check if your app has this vulnerability

Scan your app in 25 seconds — no install, no code access required.

DKIM Not Configured — Vulnerability Database | Vezraa