What does rua and ruf stand for in the DMARC spec?

Solution 1:

From the Domain-based Message Authentication, Reporting, and Conformance (DMARC) RFC section 11.4 (DMARC Tag Registry):

rua: Reporting URI(s) for aggregate data

ruf: Reporting URI(s) for failure data

Unless you enable reporting or use addresses matching the policy domain, neither rua nor ruf should do anything. See the RFC section 7.1 for details.

You should have at least a working rua address while configuring DMARC. It will allow you to verify that your DMARC configuration is working as expected.

The rua address is the address to which aggregate reports are sent by domains that have received mail claiming to be from your domain. I've only received reports from Gmail, Yahoo and Microsoft. The report is in XML contained in a zip file. I process the reports with a script that loads the data into a database for review.

Reports are sent periodically by the receiving domain only if you have sent them mail within the report period. Most smaller domains do not support DMARC, but the major domains do. Correctly configuring SPF, DKIM an DMARC will improve the credibility of your mail server. Baring other issues, your email should avoid the spam folder.

The ruf address is the address to which you want forensic data sent when messages that do not comply with your policy are received. I've received one report of this type. These records may help you determine whether your domain is being spoofed or if you have a configuration issue. I find the rua reports are sufficient for my needs. None of the above domains have sent me a forensic report.