Dňa 19. októbra 2025 10:57:53 UTC používateľ Alessandro Vesely via mailop <[email protected]> napísal:
>Hm... certificates are real, reputation services are not: When I enter my >server's IP into TrendMicro's "reputation service"[*] it says it doesn't >exist. Yet, it has a Letsencrypt certificate. Ditto for mailop's MX. The only reliable certificate (for me) is my certificate (generated or signed by me). Anything other is 3-th party with unknown/uncertain value. Even my own self signed certificate has low reliability, as anyone can generate his own with exact the same content (except signature, with a little of luck that nobody steal secret key). Publishing/using its fingerprint to verify its content can inrease its value, but IMO it is prone to mistakes. One can icrease usability by own CA, but that is another topic. Thus using certficate for anything other than to exchange/derive the (ephemeral) encryption keys is IMO fake feel of security, especially with SMTP (MTAs). regards -- Slavko https://www.slavino.sk/ _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
