Here is how cnn.com has configured SPF, DKIM, and DMARC for its outgoing mail. For a widely read domain, well-formed authentication records help newsletters and notifications reach readers reliably.
What this report checks
The grade above is derived directly from what cnn.com publishes in DNS, so it reflects the domain exactly as a receiving mail server sees it. SPF lists the servers allowed to send on the domain's behalf. DKIM adds a cryptographic signature that proves a message was not altered in transit. DMARC ties the two together and tells receivers what to do when a message fails both checks. Transport records such as MTA-STS and TLS-RPT add a further layer by protecting the connection itself.
About this report
This report is generated from publicly available DNS records for cnn.com and is provided for informational and educational purposes only. SPFWise is not affiliated with, endorsed by, or connected to the owner of cnn.com. The records shown are the same ones any mail server can query, and the grade updates automatically as they change.
Want the same breakdown for your own domain? Run a free scan to get an identical grade along with the exact records to fix anything that is weak.