Email Verification
Email verification is the process of checking, before you send, that an address is well-formed, that its domain can receive mail, and that the mailbox is likely to accept it. It runs a layered set of tests (syntax, MX lookup, and an SMTP probe) and flags risky addresses like spam traps, disposable domains, and role accounts. Done first, it keeps your bounce rate low.
- Confirms an address is deliverable before you send to it
- Layered checks: syntax, then MX lookup, then an SMTP probe
- Flags catch-all domains, disposable addresses, role accounts, and spam traps
- Cuts your bounce rate and protects sender reputation
What email verification checks
Email verification is a stack of tests, run cheapest-first, that together estimate whether an address will accept mail. The point is to catch typos, dead domains, and bad data before a send turns them into a hard bounce. It does not guarantee delivery, but a good verifier removes most of the addresses that would otherwise bounce or land you in trouble.
The layers run roughly in this order:
- Syntax check. Is the address even valid in form (
name@domain.tld), with no stray characters or missing parts? - Domain and MX check. Does the domain exist, and does it publish MX records, meaning it can receive mail at all?
- SMTP probe. The verifier opens an SMTP conversation and issues
RCPT TOfor the address to see whether the server accepts or rejects that specific mailbox, without actually sending a message. - Risk flags. Is it a known spam trap, a disposable throwaway domain, or a role account like
info@orsupport@?
Where verification hits its limits
The SMTP probe is powerful, but two things blunt it. First, many servers run a catch-all (or accept-all) policy: they accept mail for every address at the domain, real or not, so the probe gets a “yes” it cannot trust. A verifier can only mark these “unknown,” not “valid,” and you have to decide whether to risk them.
Second, some providers deliberately give vague or misleading SMTP responses to defeat verification and to avoid leaking which mailboxes exist. Aggressive probing can also itself harm your reputation if you hammer a provider, which is why bulk verification is best done through a dedicated service rather than your own sending infrastructure. The honest output of verification is a risk score, not a guarantee.
> MAIL FROM:<probe@verifier.example>
< 250 OK
> RCPT TO:<nosuchuser@example.com>
< 550 5.1.1 No such user here
When and how to use it
Use verification at two moments. At the point of capture, validate the address in real time at signup so a typo never enters your list; pairing this with double opt-in stops most bad data at the door. Before a send, run any old, imported, or long-dormant list through a bulk verifier so you are not mailing addresses that have decayed since you last touched them.
Verification is a core part of list hygiene, not a replacement for it. It removes the addresses that would bounce, while suppression of unsubscribes and complainers, and a sunset policy for the unengaged, handle the rest. Together they keep your bounce rate and complaint rate inside the limits mailbox providers enforce.
How an address is verified
Verification result types
| Valid | Risky | Invalid | |
|---|---|---|---|
| Meaning | Mailbox accepts mail | Cannot be confirmed | Will bounce |
| Examples | Verified inbox | Catch-all, role account | No MX, no such user |
| Action | Send | Send with caution | Suppress |
| Bounce risk | Low | Medium | High |
By the numbers
Common mistakes
Frequently asked questions
RCPT TO to see whether the server accepts that specific mailbox without sending a message. On top of that it flags disposable domains, role accounts, and known spam traps. The output is a risk verdict, not an absolute guarantee.