self-signed certs

Florian Weimer fw at
Fri Jan 16 15:45:08 UTC 2009

* Jeff Mitchell:

> I've been seeing some odd behavior today with some of the servers that
> respond to on port 587. Some, but not all, of the
> servers are presenting self-signed certs, causing my own server to
> balk at making a connection. (The Organization is RTFM, Inc. -- it'd
> be funny if mail wasn't queueing up on my end). Sometimes I get a
> server with a legit cert, so I can slowly drain my queue by flushing
> it over and over and over...

There's no PKI for Internet Mail routing, so I don't see what you get
by checking certificates at all.

More information about the NANOG mailing list