multiple dkim - per domain dkim signing

[itjamie]

we would love to see multiple dkim signature keys with rules to assign dkim keys per domain

this would allow us to combine multiple PMG servers into one and to allow reselling of pmg to customers.

using the same dkim key for multiple different customers isnt a great idea

 

[Stoiko Ivanov]

using the same dkim key for multiple different customers isnt a great idea

Why not (asking mostly to not overlook something)?
The only downside I currently see is that you'd need to create the DNS-entries for all domains (you can do so before switching and while keeping the record for the currently used selector in place)

 

[itjamie]

incase of a breach of a customer server that server will be able to relay mail as if it was another customer and have it be signed.

other mail gateway products weve been reviewing allow dkim key's per domain (or per customer for multi-tenant aware systems).