I was setting up a user with POP / SMTP mailbox in outlook and was (over) thinking.
There's the choice for SSL encryption vs. none.
Encrypting traffic on the web seems like a good thing, I realize.
But in the grand scheme of things, the SSL encryption it is talking about is from the computer to (only) the mail server, the first hop in several for the mail on the web, right?
So again, while encryption is good, this is only encrypting mail to and from the user for a potentially small amount of total travel of the email? Some is better than none, but this is certainly not for the whole trip?
thoughts on forgoing SSL so it's easier to set up the account in outlook - we can use mail.contoso.com without the need for a certificate rather than the longer / harder to remember web hosting company's FQDN, which does have a certificate.
Your email is not traveling through a lot of (email) hops nowadays. Using a hierarchy of mail agents has been a concept of the early days, meanwhile the "front end" mail servers try to communicate directly.