thunderbird asks me to confirm ssl-certificate exception, even though the domain its showing me shouldnt be used
Hello, I setup my own mailserver. It has a valid lets encrypt wildcard-certificate for *.tld.com. The mailserver usees imap.tld.com for imap and smtp.tld.com for smtp. So the certificate should be ok. When i add an account to thunderbird i get the ssl-certificate exception for tld.com. But the tld.com should not be used, only imap / smtp. Why is thunderbird trying to validate a certificate for tld.com?
All Replies (4)
Possibly because tld.com is the domain name, whereas imap.tld.com is only a subdomain.
david said
Possibly because tld.com is the domain name, whereas imap.tld.com is only a subdomain.
But what is the purpose to validate tld.com? What exactly is thunderbird trying to find there? It only needs to connect to imap.tld.com / smtp.tld.com, no?
If i kill the process while its asking for an exception and start thunderbird again, it doesnt ask me to make a security exception anymore and i can send/receive emails normally.
Is it maybe trying to connect there to find caldav or something while initializing the account?
TB isn't trying to 'find' anything; it's just standard protocol in internet connectivity to put domain name authentication over subdomain authentication because domain name servers track domains, not subdomains.
This question has been locked because the original author has deleted their account. While you can no longer post new replies, the existing content remains available for reference.