I've not had any issues with self signed certs with TLS on SMTP. That said, lately I've been using Lets Encrypt certificates with the certbot program to manage them, and that has worked really well. The initial setup takes a little effort to do a DNS based verification since the mail hosts are not running HTTP servers to do the automatic verification. Renewals are automatic, though.
On Tue, Jul 25, 2017 at 10:51 AM, Jonathan Leist <jleis...@gmail.com> wrote: > Hello, > > We're looking to implement inbound TLS on machines that are only used to > send mail and receive bounces, and I was wondering if anyone has > encountered problems using a self-signed cert for that purpose. It seems > like it would be easier to implement on a larger scale than would CA-signed > certs—and using the self-signed cert worked fine in tests—but we also > obviously don't want to do anything that would prevent us from receiving > bounces. > > Thanks for your time. > > -- > Jonathan > > _______________________________________________ > mailop mailing list > mailop@mailop.org > https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop > >
_______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
