DKIM (DomainKeys Identified Mail) is an email authentication method that lets the receiving mail server verify that an email was actually sent by the domain it claims to come from. ShadowTrackr checks your DKIM configuration as part of its
domain monitoring.
A missing or misconfigured DKIM record makes it easier for attackers to spoof emails from your domain. ShadowTrackr monitors your DKIM setup and can
alert you if something changes or breaks.
Standard vs. custom selectors
Most email services use standard DKIM selectors, and ShadowTrackr already checks these by default. However, if your organization uses custom selectors (common with certain email providers or when you manage your own mail infrastructure), ShadowTrackr won't find them unless you tell it what to look for.
To find your custom DKIM selector, look at the headers of an email sent from your domain. Find the
DKIM-Signature header and look for the
s= parameter. The value after
s= is your selector.
For example, if the header contains:
DKIM-Signature: v=1; a=rsa-sha256; d=yourdomain.com; s=myselector; ...Then
myselector is the value you need to add.
Go to your
Settings page and add your custom selectors. Once added, ShadowTrackr will include them in its DKIM checks for your domains. You can add multiple selectors if needed.
