Self-signed, no-cost or paid TLS(SSL) certificates?
Posted: 2017-08-20 14:30
For my email system I'm currently using self-signed certificates. In spite of this, email works perfectly but I have also configured spf, dkim and dmarc, not without a lot of trial and error, I might add.
Although I'm not satisfied with the self-signed certificate neither do I wish to acquire paid certificates. For my domains I use Letsencrypt certificates; I've also tried to use them for my email but afterwards, although they seem to work and are recognised elsewhere, I've been unable to connect to the database on login to both Round Cube and Squirrelmail; but that's another story.
Another option is to use a self-signed certificate with its own public key infrastructure (PKI) by means of the easy-rsa package. Either that or use CAcert.
I think I'll never spend my hard-earned money on a paid certificate but I'd very much like to hear your comments, whether you use paid or unpaid certificates, about the Email Certificate business and certificates for domains.
Thank you.
Although I'm not satisfied with the self-signed certificate neither do I wish to acquire paid certificates. For my domains I use Letsencrypt certificates; I've also tried to use them for my email but afterwards, although they seem to work and are recognised elsewhere, I've been unable to connect to the database on login to both Round Cube and Squirrelmail; but that's another story.
Another option is to use a self-signed certificate with its own public key infrastructure (PKI) by means of the easy-rsa package. Either that or use CAcert.
I think I'll never spend my hard-earned money on a paid certificate but I'd very much like to hear your comments, whether you use paid or unpaid certificates, about the Email Certificate business and certificates for domains.
Thank you.