Handshake users interested in email security may want to know if we support using Sender Policy Framework (SPF) and/or DomainKeys Identified Mail (DKIM) to identify messages that are legitimately sent by Handshake.
All emails sent by Handshake (such as notifications, job digests, etc.) use SPF / DKIM and DMARC for enforcement to validate that they are legitimate Handshake emails.
- Note: SPF records for Handshake emails are published under DNS records and can be viewed using free tools like SPF Check.
Emails generated via Targeted Emails do not use SPF / DKIM and DMARC, and we don't support emails being sent on behalf of a customer.
Our email sending domains are currently:
- joinhandshake.com
- mail.joinhandshake.com
- notifications.joinhandshake.com
- m.joinhandshake.com
- g.joinhandshake.com
These servers send emails using TLS encryption protocol. In the event that sendings fail with TLS it may attempt to send emails using other protocols such as SSL.