[110764] in North American Network Operators' Group
Re: smtp.comcast.net self-signed certs
daemon@ATHENA.MIT.EDU (Florian Weimer)
Fri Jan 16 10:45:16 2009
From: Florian Weimer <fw@deneb.enyo.de>
To: Jeff Mitchell <jeff@emailgoeshere.com>
Date: Fri, 16 Jan 2009 16:45:08 +0100
In-Reply-To: <49701677.7070207@emailgoeshere.com> (Jeff Mitchell's message of
"Fri, 16 Jan 2009 00:09:11 -0500")
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
* Jeff Mitchell:
> I've been seeing some odd behavior today with some of the servers that
> respond to smtp.comcast.net on port 587. Some, but not all, of the
> servers are presenting self-signed certs, causing my own server to
> balk at making a connection. (The Organization is RTFM, Inc. -- it'd
> be funny if mail wasn't queueing up on my end). Sometimes I get a
> server with a legit cert, so I can slowly drain my queue by flushing
> it over and over and over...
There's no PKI for Internet Mail routing, so I don't see what you get
by checking certificates at all.
