Back to main menu


The art of inboxing

Getting your email to land in the inbox can be a tricky thing. However, there are several things you can do as a sender to help ensure that you master the art of inboxing. Read more –



Email has changed the world because of its openness, ubiquity and asynchronicity. Unfortunately, these traits also attract malicious users that are out to abuse the beauty of the SMTP protocol.

Did you know that over half of all current email traffic is considered spam? Undesired marketing offers, d emails with virus packed attachments, and phishing scam messages to lure people into revealing their private credentials, are some of the threats that email infrastructure administrators constantly face. With all of this noise, it’s difficult for the receivers to separate the good from the bad making it difficult for senders to get legitimate email delivered.

So how do you ensure your email actually reaches inboxes? It can be somewhat of an art and in this post, we cover some of the most important factors you need to consider when trying to get your email delivered.

1. Keeping your mailing list in shape

It’s important to always keep your email list(s) up to date by:

You’re required to ensure your audience actually wants to receive emails from you. The best way to do this is to implement a two-step email subscription mechanism called “double opt-in” and provide the conspicuous ability for your contacts to unsubscribe from future emails.

Learn more: Get granular with mailbox specific insights and bring in your gmail metrics by integrating with Google Postmaster Tools.

Double opt-in means that you’re validating the email entered on your website twice, first by having the email address entered by the user on the site and second, by asking the user to confirm their subscription to your email list. By sending a subscription confirmation email to the email address specified initially on the site, you’re confirming that the address they submitted is correct and the recipient actually wants to receive updates from you. It’s important to remember that only after the user clicks the link in the freshly received confirmation message should you add them to your email list. Another important aspect of double opt-in is that it should prevent you from hitting spam traps.

TL;DR: In a hurry to restore your sender reputation? Here are our top guides to get you on the right track:

Spam traps are email addresses created for the sole purpose of catching illegitimate email. These traps catch senders that do not implement proper email validation and list cleaning. Most commonly, spam trap email addresses are found by running web-scraping software that automatically gathers email addresses from the web. The scraper is tricked into navigating to certain webpage where such addresses are in plain sight. The scraper, unaware of the trap, adds the email to its database of harvested addresses. When an Internet Service Provider (“ISP”) or blacklist maintainer notices an email sent to the spam trap address, they will blacklist the sender or downgrade the sender’s reputation.

Part of maintaining a healthy mailing list is keeping it current based on your email traffic. During the SMTP chat session or shortly afterward through a bounce notification, the recipient server will report bounces or bad email recipients back to the sender. In addition, many email services provide feedback loops that tell the sender when a recipient classifies the message as spam.

These bounces and spam complaints are the strongest signals currently used by ISPs to judge the quality of your email. If you’re sending a lot of emails, they may be hard to avoid but it is very important that you remove those addresses from future mailings. This is easier said than done because the feedback is not standardized so it can be tricky to collect and classify this information at scale. This deserves an entire blog post on its own which we hope to publish soon.

Beyond monitoring for bad addresses and complaints, it’s a good idea to remove other addresses that aren’t interacting with your emails. ISPs take interaction (opens, clicks) as a good sign and it improves your reputation. The more your recipients interact with your emails, the better your deliverability.

2. Proper Authentication

As the fight against spam continues to evolve, the community has created a set of protocols, called authentications, to help ensure the identity of email senders, called SPF, DKIM, and DMARC.

Why is this needed you may ask? How many times have you received emails from a bank at which you have no account or a request for your login credentials? You immediately think something is phishy with the email (or at least that is what you should be thinking!)

These protocols work for both transactional (one to one) and marketing email (one to many or “bulk”). They ensure the authenticity of the sender’s domain and server. There are too many details to go into here, but the Wikipedia article on email authentication is a good place to read more about this.

You can think of proper email authentication as the “table stakes” of deliverability. Without proper authentication, you don’t stand a chance of getting past the filters of most major ISPs.

Learn more: If you’re looking to up your authentication game and bring brand awareness to your messages in the inbox, check out our guide to BIMI – it’s more than just a funny name.

3. Make sure you’ve got a good reputation

You can think of your email reputation just like a credit score. In the email world, your reputation is linked to the IP addresses and the domains you are sending from. The first step is to make certain that your IP address is clean and has not been recently used for malicious purposes. You can use tools like MX Toolbox or to check the reputation of your IP address.

Most filters perform checks to see if an email is originating from an IP address listed on one of the many blacklists. The most famous blacklists are the Spamhaus Black List (SBL for short), or DNSBL – the DNS blacklist. If you are using an email service provider that is sharing IPs across customers and one of them has been performing illegitimate use of the service, all senders on that IP may be blacklisted. So, it’s important that email service providers using shared IPs have robust outbound spam monitoring.

Learn more: When you send you can either use a shared IP, or a dedicated on. Learn the difference with our guide and send smarter.

Even if you start with a clean IP address, most large ISPs will not trust it by default. You need to “warm-up” the IP address with a history of quality email traffic so that filters get trained to trust that traffic. As mentioned above, maintaining good list hygiene is essential to building a quality reputation.

Most sophisticated filters will also pair the IP address with the domain used to send the email when deciding whether to trust the traffic. The email authentication protocols above are used to verify these two things and prevent spoofing.

4. What you send is who you are

While the primary signals today are recipient engagement, most filters also check the content of the email. A large list of what can typically trigger alerts can be found on the SpamAssassin website. Keep in mind that this list is only an indication of spam flags. Different filters use different algorithms to detect spammy content.

Some other things to avoid are below:

  • High image to text ratios and hosting images on other domains other than the sending domain.

  • Malformed HTML.

  • Not supplying a plain-text-alternative version of the email.

  • Including non-alphanumeric characters in succession in your emails and misleading titles.

  • Incorrectly formatted headers, like message-id

  • Using an anonymous or new domain name as the sending domain.

To help with deliverability, you should always include information about who is sending the email, a valid reply-to address and an unsubscribe link in the body of the email. The unsubscribe link lets users click if they do not want to receive further emails from your business. It’s an important indication of high-quality email and a sign to spam filters that your message is legitimate.

While these are the most important practices to follow for good deliverability, there is still a bit of black magic to it. Good monitoring and acting quickly are probably the most important things to remember. You can also read Mailgun’s Best Email Practices Email Guide for more tips on reaching optimal email deliverability or use our Deliverability Services for direct access to our deliverability experts.

Did you like this post? For more helpful content be sure to subscribe to our Newsletter and join our clan of email geeks. You’ll have fun, we promise.

Keep me posted! Get the latest from Mailgun delivered to your inbox.

Send me the newsletter. I expressly agree to receive the newsletter and know that I can easily unsubscribe at any time.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Related readings

What is SMTP and how does it work?

SMTP, though a pillar of email delivery, often gets lost in the jumble of tech terms and acronyms. But if you're ready to send impactful emails, this is one of those acronyms that...

Read more

The basics of SPF records

SPF doesn’t refer to how long you can wait before you have to reapply your sunblock (seriously, go get some). Instead, the term “SPF” refers to a security measure that helps...

Read more

Introducing engagement data for validations: reveal authentic engagement trends with predictive data

Sinch Mailgun’s latest release is an all-new validation criteria that leverages the past to give you a glimpse into the future. If you’re thinking this sounds too good to be true, we...

Read more

Popular posts

Email inbox.

Build Laravel 10 email authentication with Mailgun and Digital Ocean

When it was first released, Laravel version 5.7 added a new capability to verify user’s emails. If you’ve ever run php artisan make:auth within a Laravel app you’ll know the...

Read more

Mailgun statistics.

Sending email using the Mailgun PHP API

It’s been a while since the Mailgun PHP SDK came around, and we’ve seen lots of changes: new functionalities, new integrations built on top, new API endpoints…yet the core of PHP...

Read more

Statistics on deliverability.

Here’s everything you need to know about DNS blocklists

The word “blocklist” can almost seem like something out of a movie – a little dramatic, silly, and a little unreal. Unfortunately, in the real world, blocklists are definitely something you...

Read more

See what you can accomplish with the world's best email delivery platform. It's easy to get started.Let's get sending
CTA icon