Blog
Contact
Sign in
Scan complete
scan_id: bb993b9a…
F
47/100
motorro.pl
1 critical issue needs immediate attention.
6/6
checks
10
passed
finished
Scan timestamps
Created
Jul 4, 2026, 2:56 PM
Started
Jul 4, 2026, 2:56 PM
Finished
Jul 4, 2026, 2:56 PM
Updated
Jul 4, 2026, 2:56 PM
Export PDF
Re-scan
Findings by severity
18 results
1
Critical
4
High
2
Medium
1
Low
10
Pass
Report coverage
100%
Full coverage - every planned check was evaluated.
15 skipped
All
33
Critical
1
High
4
Medium
2
Low
1
Pass
10
Skipped
15
Email Security
100%
5/5
SPF Record
Learn how it works
Info
6/7 pass
SPF Record
SPF record is published
The domain publishes exactly one SPF TXT record.
Pass
SPF Record
SPF syntax is valid
The SPF record is syntactically valid.
Pass
SPF Record
SPF policy does not use strict fail mode
The SPF policy does not fully reject unauthorized senders.
Medium
SPF Record
SPF DNS lookup limit is not exceeded
The SPF policy stays within the DNS lookup limit.
Pass
SPF Record
SPF delegated policies are valid
All include and redirect targets resolve to valid SPF policies.
Pass
SPF Record
SPF record avoids deprecated mechanisms
The SPF policy does not use discouraged SPF mechanisms.
Pass
SPF Record
SPF authorization scope is constrained
The SPF policy does not authorize obviously overbroad IP ranges.
Pass
DMARC Policy
Learn how it works
Info
3/7 pass
DMARC Policy
DMARC record is published
The domain publishes exactly one DMARC TXT record.
Pass
DMARC Policy
DMARC syntax is valid
The DMARC record is syntactically valid.
Pass
DMARC Policy
DMARC policy is monitoring only
The DMARC policy uses p=none and does not ask receivers to block or quarantine failing mail.
High
DMARC Policy
DMARC subdomain policy is weak
Subdomains are not protected by an enforcement policy.
High
DMARC Policy
DMARC pct was not evaluated
Percentage enforcement was skipped because there is no active enforcement policy to sample.
No impact on score or coverage
Skipped
DMARC Policy
DMARC aggregate reporting is configured
The DMARC record contains a valid aggregate reporting destination.
Pass
DMARC Policy
DMARC alignment is relaxed
The DMARC record allows relaxed identifier alignment for DKIM or SPF.
Low
MTA-STS Policy
Learn how it works
Info
0/5 pass
MTA-STS Policy
MTA-STS DNS record is missing
The domain does not publish an MTA-STS TXT record, so sending servers cannot discover or enforce an MTA-STS policy.
High
MTA-STS Policy
MTA-STS policy fetch was not evaluated
Policy fetch was skipped because the domain does not have a valid MTA-STS DNS record.
No impact on score or coverage
Skipped
MTA-STS Policy
MTA-STS policy syntax was not evaluated
Policy syntax evaluation was skipped because the policy file could not be fetched.
No impact on score or coverage
Skipped
MTA-STS Policy
MTA-STS mode was not evaluated
Mode evaluation was skipped because the policy file is not available or has invalid syntax.
No impact on score or coverage
Skipped
MTA-STS Policy
MTA-STS MX coverage was not evaluated
MX coverage evaluation was skipped because the policy file is not available, has invalid syntax, or the domain does not accept mail.
No impact on score or coverage
Skipped
TLS-RPT Record
Learn how it works
Info
0/3 pass
TLS-RPT Record
No TLS-RPT record found
The domain does not publish a TLS-RPT record. Sending servers cannot report TLS errors to this domain.
High
TLS-RPT Record
TLS-RPT syntax was not evaluated
Syntax evaluation was skipped because the domain does not have exactly one TLS-RPT record.
No impact on score or coverage
Skipped
TLS-RPT Record
TLS-RPT rua quality was not evaluated
Reporting URI evaluation was skipped because the domain does not have a syntactically valid TLS-RPT record.
No impact on score or coverage
Skipped
DANE SMTP
Learn how it works
Info
1/5 pass
DANE SMTP
MX hosts discovered
The domain has at least one MX host configured.
Pass
DANE SMTP
No MX host TLSA zone is protected by DNSSEC
None of the MX hosts have DNSSEC on their TLSA lookup zones. DANE SMTP cannot function without DNSSEC, as sending servers will ignore TLSA records from unsigned zones.
Critical
DANE SMTP
TLSA coverage was not evaluated
TLSA coverage evaluation was skipped because no MX hosts were discovered or DNSSEC is not available.
No impact on score or coverage
Skipped
DANE SMTP
TLSA parameter quality was not evaluated
TLSA parameter evaluation was skipped because no usable TLSA records were found.
No impact on score or coverage
Skipped
DANE SMTP
Certificate match was not evaluated
Certificate verification was skipped because no usable TLSA records are published for the MX hosts.
No impact on score or coverage
Skipped
DNS Security
100%
1/1
DNSSEC
Learn how it works
Info
0/6 pass
DNSSEC
DNSSEC is not enabled
The parent zone does not publish a DS record for this domain.
Medium
DNSSEC
DNSKEY publication was not evaluated
DNSKEY evaluation was skipped because the parent zone does not publish a DS record.
No impact on score or coverage
Skipped
DNSSEC
DS and DNSKEY matching was not evaluated
DS/DNSKEY matching was skipped because required DNSSEC records are missing.
No impact on score or coverage
Skipped
DNSSEC
DNSKEY RRset signature was not evaluated
DNSKEY signature validation was skipped because DS/DNSKEY matching did not produce a valid trust path.
No impact on score or coverage
Skipped
DNSSEC
Zone RRset signature was not evaluated
Zone RRset validation was skipped because earlier DNSSEC validation steps failed.
No impact on score or coverage
Skipped
DNSSEC
DNSSEC algorithm policy was not evaluated
Algorithm policy evaluation was skipped because DNSSEC validation prerequisites were not met.
No impact on score or coverage
Skipped
Feedback