Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[fernandomm]

Hi,

Does anyone know if sharing the same public key used for DKIM between several domains can affect deliverability?

I started to have some deliverability problems and wanted to know if anyone experienced something similar to it.

[Andrew Edelstein]

I can't think of any reason why having the same signing key for multiple domains would affect deliverability. If they're all using the same sending IP address, they will share the IP reputation however.

[Teneo]

Well, yes it can ... if you have 1 bad message stream signed with the same DKIM key as the good message stream it will affect it.
More specifically we have seen real life examples of this issue with GMAIL.

If you have the same message content and good practices over multiple sending domains then using the same DKIM should not hurt you.

[AlwindB]

why use the same key for multiple streams as you can define multiple keys (selectors) per domain? or are you using one identity for signing multiple domains.

In general I would opt for at least an implementation of one DKIM selector per sending domain, this has multiple other advantages.

[FMG123]

Hi!, so ideally if you use lets say 1 /24 with one domain every 10 or 20 Ips, the ideal configuration in your opinion guys would be to have one DKIM signature per each of those domains?. I.E. for yahoo would that help with preventing TS0...s . Thanks!

[AlwindB]

by using a DKIM key (selector) per "from" domain, you can start to build build domain reputation.

In general domain reputation is becoming more important, especially with IPv6 around the corner. The default practices for sending email (mostly SPF) are becoming much harder to implement.

To work around all the throttling it's best to implement all solutions (backoff, feedbackloop, spf for ipv4, rdns and dkim)