SSL check results of 37.bad-homburg.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for 37.bad-homburg.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 29 Apr 2025 09:25:34 +0000

We can not guarantee a secure connection to the mailservers of 37.bad-homburg.de!

Please contact the operator of 37.bad-homburg.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/37.bad-homburg.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @37.bad-homburg.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail01.fb37bhg.de
217.24.13.37
10
supported
mail01.fb37bhg.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mail02.fb37bhg.de
5.10.191.93
20
supported
mail02.fb37bhg.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mail03.37.bad-homburg.de
5.10.191.94
Results incomplete
30 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @37.bad-homburg.de address so far. Test mail delivery

Certificates

First seen at:

CN=mail02.fb37bhg.de

Certificate chain
Subject
Common Name (CN)
  • mail02.fb37bhg.de
Alternative Names
  • mail02.fb37bhg.de
  • fb37bhg.de
Issuer
Country (C)
  • IL
Organization (O)
  • StartCom Ltd.
Organizational Unit (OU)
  • StartCom Certification Authority
Common Name (CN)
  • StartCom Class 1 DV Server CA
validity period
Not valid before
2016-02-24
Not valid after
2017-02-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Client Authentication
  • TLS Web Server Authentication
Fingerprints
SHA256
F9:6A:1E:AC:BF:50:E8:D6:07:6F:2F:0A:C9:34:CF:49:9B:7A:BE:37:8A:F5:DF:68:C2:71:9B:D9:84:E8:00:AA
SHA1
82:10:64:6C:8B:AA:49:D0:29:7B:BB:44:DE:09:1F:03:57:6B:F4:30
X509v3 extensions
subjectKeyIdentifier
  • 9B:78:2D:2B:E6:6D:91:42:48:2A:36:72:40:A2:C0:C5:BF:7B:31:2C
authorityKeyIdentifier
  • keyid:D7:91:4E:01:C4:B0:BF:F8:C8:67:93:44:9C:E7:33:FA:AD:93:0C:AF
authorityInfoAccess
  • OCSP - URI:http://ocsp.startssl.com
  • CA Issuers - URI:http://aia.startssl.com/certs/sca.server1.crt
crlDistributionPoints
  • Full Name:
  • URI:http://crl.startssl.com/sca-server1.crl
issuerAltName
  • URI:http://www.startssl.com/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.23223.1.2.4
  • CPS: http://www.startssl.com/policy
First seen at:

CN=mail01.fb37bhg.de

Certificate chain
Subject
Common Name (CN)
  • mail01.fb37bhg.de
Alternative Names
  • mail01.fb37bhg.de
  • fb37bhg.de
Issuer
Country (C)
  • IL
Organization (O)
  • StartCom Ltd.
Organizational Unit (OU)
  • StartCom Certification Authority
Common Name (CN)
  • StartCom Class 1 DV Server CA
validity period
Not valid before
2016-02-18
Not valid after
2017-02-18
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Client Authentication
  • TLS Web Server Authentication
Fingerprints
SHA256
58:5E:49:EE:96:A6:BC:4A:7E:CE:B8:A5:0D:F8:84:ED:D0:F8:B8:52:0B:16:4F:06:32:C7:BD:D2:EA:13:E8:9D
SHA1
A9:E5:6C:59:39:E4:E2:EF:3A:18:28:8D:C1:C1:B1:C3:FF:5C:E9:51
X509v3 extensions
subjectKeyIdentifier
  • D8:68:CF:6A:45:1C:1D:FE:04:42:F1:3F:51:05:B1:A5:34:80:FB:03
authorityKeyIdentifier
  • keyid:D7:91:4E:01:C4:B0:BF:F8:C8:67:93:44:9C:E7:33:FA:AD:93:0C:AF
authorityInfoAccess
  • OCSP - URI:http://ocsp.startssl.com
  • CA Issuers - URI:http://aia.startssl.com/certs/sca.server1.crt
crlDistributionPoints
  • Full Name:
  • URI:http://crl.startssl.com/sca-server1.crl
issuerAltName
  • URI:http://www.startssl.com/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.23223.1.2.4
  • CPS: http://www.startssl.com/policy