What are the most common misconfigurations seen in deliverability audits?

Frequently found DNS misconfigurations:

SPF issues:

Multiple SPF records (causes permerror)

Exceeding 10 lookups

+all or overly permissive policies

Missing mechanisms for actual sending services

DKIM issues:

Missing DKIM entirely

1024-bit keys (should be 2048)

Selector not matching signed messages

DMARC issues:

p=none forever (never enforcing)

Missing or invalid report addresses

No DMARC at all

PTR issues:

Missing reverse DNS on sending IPs

Generic PTR names

PTR not matching forward DNS

Audit your DNS configuration quarterly.

Regular credential audits catch documentation errors before they cause problems.