nanog mailing list archives

Re: smtp.comcast.net self-signed certs

From: Florian Weimer <fw () deneb enyo de>
Date: Fri, 16 Jan 2009 16:45:08 +0100

* Jeff Mitchell:

I've been seeing some odd behavior today with some of the servers that
respond to smtp.comcast.net on port 587. Some, but not all, of the
servers are presenting self-signed certs, causing my own server to
balk at making a connection. (The Organization is RTFM, Inc. -- it'd
be funny if mail wasn't queueing up on my end). Sometimes I get a
server with a legit cert, so I can slowly drain my queue by flushing
it over and over and over...


There's no PKI for Internet Mail routing, so I don't see what you get
by checking certificates at all.

Current thread:

smtp.comcast.net self-signed certs Jeff Mitchell (Jan 15)
- Re: smtp.comcast.net self-signed certs Florian Weimer (Jan 16)
  - Re: smtp.comcast.net self-signed certs Adrian Chadd (Jan 16)
    - Re: smtp.comcast.net self-signed certs Florian Weimer (Jan 16)
  - Re: smtp.comcast.net self-signed certs Tony Finch (Jan 16)
    - Re: smtp.comcast.net self-signed certs Jeff Mitchell (Jan 16)
    - Re: smtp.comcast.net self-signed certs Tony Finch (Jan 16)
    - Re: smtp.comcast.net self-signed certs Owen DeLong (Jan 16)
    - Re: smtp.comcast.net self-signed certs Eric Tow (Jan 16)
    - Re: smtp.comcast.net self-signed certs Jeff Mitchell (Jan 16)