Gmail Drops Support for POP3 with Self-Signed Certificates

News
By published

Gmail users can't retrieve email from third-party services using self-signed SSL certificates.

For the past week, access to a third-party email service through Gmail has stopped as of December 11 after years of trouble-free email retrieval. According to the mail fetch history panel, it's an SSL Security Error that's preventing email retrieval from the pop3 server, reporting that the SSL certificate has expired. Naturally a technical support request has been placed with the third-party provider, but now a new report indicates that Google is responsible for the Gmail SSL error thanks to a new policy.

According to Slashdot, Google's Gmail servers have been reconfigured to not connect to remote pop3 servers that have self-signed certificates. Thus Gmail users trying to get email from other services may be left with an unencrypted connection, or no access to the services whatsoever.

"As of December 2012, Gmail uses 'strict' SSL1 security," the company states. "This means that we'll always enforce that your other provider's remote server has a valid SSL certificate. We made this change to offer a higher level of security to better protect your information."

In other words, Google will now only accept SSL certificates from a paid provider approved by Google. The company states that Gmail users can always uncheck the "Always use a secure connection (SSL) when retrieving mail" option on the Accounts and Import tab in the Gmail settings menu, but that also means the user's password and email will not be protected while sent over the Internet.

The other option is to notify the third-party email service of the error so they can "fix" their SSL setup. The Slashgear report suggests that public keys should be placed on Google's side in the user configuration rather than simply dumping the problem on the user and then moving on.

"If the error is not fixed, we will disable your mail fetching and stop retrieving your messages from your other account," Google said. "We do not accept self-signed certificates. For a certificate to be valid it needs to chain up to a valid CA, like one in the Mozilla CA list."

So far Google has not publicly announced the change in its SSL policy via a blog update or press release.

 

Contact Us for News Tips, Corrections and Feedback

See more Computing News
Kevin Parrish

Kevin started taking PCs apart in the 90s when Quake was on the way and his PC lacked the required components. Since then, he’s loved all things PC-related and cool gadgets ranging from the New Nintendo 3DS to Android tablets. He is currently a contributor at Digital Trends, writing about everything from computers to how-to content on Windows and Macs to reviews of the latest laptops from HP, Dell, Lenovo, and more. 

Latest in Online Security
23andME box
23andMe has declared bankruptcy — here's how to delete your data now
A magnifying glass on top of the Steam logo in a web browser
Valve just pulled a malicious game demo spreading info-stealing malware from Steam
A man filing his taxes electronically on a laptop
AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
MacBook Pro 2023
New Mac attack is tricking users into thinking their computer is locked — how to stay safe
Hacker using a stolen social security card
Your Social Security number is a literal gold mine for scammers and identity thieves — here’s how to keep it safe
An open lock depicting a data breach
Half a million teachers hit in major data breach with SSNs, financial data and more exposed — what to do now
Latest in News
Apple Watch Ultra 2
Apple Watch Ultra 3 just tipped for two major upgrades
NYTimes Connections
NYT Connections today hints and answers — Tuesday, March 25 (#653)
Titus Welliver in Bosch Legacy season 3
‘Bosch’ season 3 preview: 5 things to know before the final season on Prime Video
A first look at Amazon's Fallout TV series coming to Prime Video
‘Fallout’ season 3 plans are reportedly being made — while season 2 is still filming
Surface Laptop 7 from the front
Amazon just gave Surface Laptop 7 a 'frequently returned' label — here's what's going on
New emojis with iOS 18.4 beta release.
iOS 18.4 beta brings 8 new emoji to your iPhone — here's all the new options
More about online security
23andME box

23andMe has declared bankruptcy — here's how to delete your data now

A man filing his taxes electronically on a laptop

AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
Valerion StreamMaster Plus 2 and VisionMaster Pro 2 promotional images

Looking for the perfect home theater projector? Valerion should be on your radar in 2025
See more latest
7 Comments Comment from the forums
  • freggo
    Why would I want POP3 access from within GMail?
    We run our own mail server and if anything would want our server to have POP3 access to our Google accounts.

    Reply
  • moonsite
    Gmail has become very confusing to use for me lately. Even though I am still using it heavily, I prefer the much simpler interface of Outlook webmail.
    Reply
  • kyzarvs
    Email security is an utter illusion - anyone sending sensitive information by email needs their head examined. It's a good first step though to insist on proper certificates - self-cert proves nothing.
    Reply
  • twelch82
    Is this really about security, or making money?
    Reply
  • kellybean
    Gmail is the best one out there has the best spam filtering too.
    Reply
  • _Cosmin_
    kyzarvsEmail security is an utter illusion - anyone sending sensitive information by email needs their head examined. It's a good first step though to insist on proper certificates - self-cert proves nothing.
    Everheard of PGP or other cryptography software (thunderbird even has an add-on for better integration)? Sensitive information must never travel unencrypted even if you think the travel medium is secure!
    Reply
  • DigiCert just wrote an article about this with an explanation and troubleshooting tips. Check it out:

    http://www.digicert.com/ssl-support/gmail-pop3-troubleshooting.htm
    Reply
Most Popular
Valerion StreamMaster Plus 2 and VisionMaster Pro 2 promotional images
Looking for the perfect home theater projector? Valerion should be on your radar in 2025
Vanilla Decaffeinato
I'm a decaf drinker — here's why Nespresso's latest drop has finally persuaded me to buy a Vertuo machine
Snow White (Rachel Zegler) holding a bird in a scene from the live-action "Snow White" remake
When is 'Snow White' coming to streaming? Here's our best guess
Titus Welliver in Bosch Legacy season 3
‘Bosch’ season 3 preview: 5 things to know before the final season on Prime Video
Robert Pattinson in "Mickey 17" movie (2025)
5 top new movies to stream this week on Netflix, Prime Video and Disney Plus (March 25-31)
Apple Watch Ultra 2
Apple Watch Ultra 3 just tipped for two major upgrades
NYTimes Connections
NYT Connections today hints and answers — Tuesday, March 25 (#653)
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #387 (Tuesday, March 25 2025)
Two members of our review team photographed during a pressure relief test on the Saatva Classic mattress, with one typing notes into a laptop and the other measuring the amount of sinkage caused by a 56lb cast iron weight being dropped into the middle of the Saatva Classic mattress
People with this bed type are most satisfied with their mattress — and it’s not what we expected
A first look at Amazon's Fallout TV series coming to Prime Video
‘Fallout’ season 3 plans are reportedly being made — while season 2 is still filming