* raf: > Maybe Thunderbird only complains about self-signed certificates for > getting mail (IMAPS/POPS), rather than for sending mail (SMTP/ > STARTTLS). I don't know.
Thunderbird complains about all certificates that cannot be verified using either the OS keystore or TB's own keystore. That happens for every type of outbound server connection. One can import self-signed certs and/or certificate authority data directly into TB's own keystore, but importing into the OS keystore (e.g. the system keychain for macOS) is usually more convenient. -Ralph
