[Mailer] Using Let's Encrypt certs to sign messages

[javiereguiluz]

In https://symfony.com/doc/4.4/mailer.html#signing-and-encrypting-messages we say that:

But according to this comment: https://symfony.com/blog/new-in-symfony-4-4-signing-and-encrypting-email-messages#comment-23489

Email encryption and code signing require a different type of certificate that Let’s Encrypt does not issue.

Can someone check this? Thanks!

[patrick-mota]

Indeed isn't the same thing.
I think let's encrypt is only used to validate your domain name and encrypt SSL/TLS, so the transport side.
S/MIME is the message side so isn't related with securing the transmission channel but identifying that an email really belongs to the person using it and the message is secure (encrypted).

I think cacert gives these kind of certificates but they just verify the domain so I don't think it's really safe to use it.

As far as I know you have to pay to get a real good S/MIME certificate provider.

For local only you could probably use a certificate generated by yourself via certbot or something.