It appears that Edmund Lodewijks via mailop <[email protected]> said: >Does this setup work, a self-signed certificate in combination with >DANE? > >Whenever I tried this, connections from Gmail and Protonmail (and >potentially others) got dropped right after tls:
It works for mail systems that use DANE. I know Gmail doesn't (that is why we have MTA-STS). Protonmail's DNS isn't DNSSSEC signed, so I doubt they do either. I have LE signed certificates that also have TLSA so it works both ways. R's, John _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
