dropbox.com has good email authentication with minor issues. Most records are correctly configured.
| SPF (Sender Policy Framework) | pass |
| DKIM (DomainKeys Identified Mail) | fail |
| DMARC (Domain-based Message Authentication) | pass |
| MX (Mail Exchange Records) | pass |
| Blacklist Status | pass |
v=spf1 ip4:45.58.64.0/20 ip4:185.45.8.0/22 ip4:162.125.0.0/16 ip4:199.47.216.0/22 ip4:108.160.160.0/20 ip4:205.189.0.0/24 ip4:160.34.15.16/28 ip4:52.5.134.202/32 ip4:205.220.162.87/32 ip4:205.220.174.83/32 ip4:167.89.98.146/32 ip4:167.89.89.46/32 ip4:167.89.96.134/32 ip4:159.183.109.97/32 ip4:149.72.220.85/32 ip4:159.183.15.144/32 ip4:159.183.2.51/32 ip4:159.183.2.58/32 ip6:2620:c6:8000::/48 include:amazonses.com include:_spf.google.com include:mail.zendesk.com include:mktomail.com include:rp.oracleemaildelivery.com exists:%{i}._spf.mta.salesforce.com ~all
v=DMARC1;p=reject;pct=100;rua=mailto:c7xrs-8253@rua.dmarc.emailanalyst.com,mailto:dmarc@dropbox.com
Email authentication (SPF, DKIM, DMARC) verifies that emails claiming to be from dropbox.com actually come from authorized servers. Without proper authentication, emails may be marked as spam or rejected by receiving servers like Gmail, Outlook, and Yahoo.
Since February 2024, Google and Yahoo require SPF, DKIM, and DMARC for all email senders. Domains without these records see significantly higher spam rates.
Use our step-by-step setup guides to configure the missing records at your DNS provider. After making changes, re-scan dropbox.com to verify the fix.