Do you know how spam works?
If you do, then you’ll already know that you shouldn’t be using your WordPress site to deliver emails.
Wait… you are using your WordPress site to deliver emails?!
Then you need to keep reading.
How Email Deliverability & SPAM works
Smart, hard-working people have put together several mechanisms to ensure reliable email deliverability for everyone.
These systems help legitimate emails get to where they’re going, while making it easier to identify and thwart spammers.
Some of these mechanisms include:
- Sender Policy Framework (SPF)
Spammers that send your daily subscription to the latest viagra promotions don’t/can’t typically use these technologies consistently, and so it’s easier to identify them as SPAM.
You may not have heard of any of these systems, but if you’re not using them, then…
Your WordPress site looks just like a SPAMMER, too
Then, one fine day, you set up a WordPress site on a random server on the internet (probably one shared by many other sites that are also sending emails).
You feel that your WordPress site is different. It should be able to send emails – WordPress has an email feature, afterall. Why would WordPress include an email function if it’s not meant to send emails?
But it seemed to work, because you got an email from your site… yay! You’re lucky, this time. But not all your emails will get through.
You’re on the clock. Any day now, email sent from your WordPress site can (and frankly, should) be marked as SPAM.
Why? Some questions to consider are:
- Did you go through the process of indicating to email providers that emails sent from your WordPress site are legitimate?
- Did you fire up a WordPress site not knowing that there’s more to do?
- Is what you did any different to what email spammers do?
- What’s to stop someone else from setting up a separate WordPress site and sending emails using your domain name?
- Why is your website any more legitimate than mine at sending emails from your domain?
Likely answers are:
- Probably not.
- Probably, yes.
- It’s not.
I don’t know you personally, but I have a feeling you’re not famous… yet (we all have our fingers crossed for you). That means that most email servers haven’t ever heard of you either.
At any time they choose, they can, and will, start marking your email as spam. Or better yet, just not delivering your email at all.
So you have several options to try to fix this:
- write a strongly worded email to all email servers in the land letting them know you’re really, really important
- write a scathing email to a WP plugin developer letting them know their plugin is terrible because you don’t receive emails you’re expecting.
- configure your email-sending domain DNS properly, so as to reliably send emails from your WordPress site representing your domain.
- use a 3rd party email service to deliver emails sent from your WordPress site (you’ll still need to configure your email-sending domain DNS)
Hopefully you can see that only the 3rd and 4th options are viable steps forward. Though we have evidence to show that not everybody thinks like you do …
I’m still not convinced. I still get email from my sites with no problems.
As I said earlier, you’re on the clock.
It might not be today, and it might not be tomorrow. It might not even be all of your emails.
Don’t worry – this is a common problem and you’re not alone in experiencing this pain.
Here, see for yourself …
Okay, got it. So what can I do to more reliably send emails from my WordPress site?
By now we’ve established:
- Email deliverability (i.e. legitimate email is not blocked/filtered out as spam) relies on indicators that state your email is legitimate.
- Setting up a WordPress site isn’t enough to deliver reliable emails.
The only solution to move forward is to put in-place those “indicators” we mentioned earlier – i.e. indicators that tell email servers that email sent from your WordPress site is legitimate.
You have 1 of 2 options (as mentioned above):
- use a 3rd party email provider and configure these indicators with them.
- configure these indicators for your WordPress site hosting.
We highly recommend the 1st option – using a 3rd party email provider.
We’ve mentioned this in the past with MandrillApp (and Mailgun) and we have a guide here that outlines how to setup Mailgun for your domain and WordPress site.
In the strongest possible terms, we recommend everybody use a dedicated, 3rd party email service provider.
There’s no good reason not to, as prices range from completely free, all the way up to ‘cheap-as-chips’.
I don’t want to use 3rd party service providers for email
Then your other option is to configure your WordPress site for legitimate email delivery.
That’s a bigger topic than we can address in this article so we’ll talk about another time.
WordPress websites in and of themselves are not suitable for reliable email delivery. There is much more that goes into the sending and delivery of email than just creating a WordPress site and using it.
If you’re relying on the emails sent from your WordPress website in any way, you need to configure your server as a reliable email sender for your domain.
If you do not do this, you are leaving your email delivery to chance.
If you’ve any comments or suggestions, please let us know below.
Great plugin with amazing support
I have been using Shield for a couple of weeks now and I am very impressed with the quality of the plugin and the features included in the free version. I will soon install the plugin on other sites too and for some I will consider the premium option, which…
Being buried alive with constant hacker requests, to not being buried alive.
OK, from seeing at least 50 plus lockouts a day to none in 6 hours: is pretty damned good, and it’s all due to this Plugin. To originally combat the Hacker Bots that I was seeing in the “Limit Login Attempts Reloaded” logs, I ran a hapless plugin that changed…
A great plugin to batten down the hatches. Feel safe.
awesome and effective plugin
It’s first plugin for any wordpress site I build. I can’t manage WP site without my baby “Simple Security Firewall”.