SSL-Tools

SSL check results of aol.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for aol.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 19 Aug 2023 17:28:47 +0000

The mailservers of aol.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @aol.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx-aol.mail.gm0.yahoodns.net
67.195.204.80
 15
supported
*.mail.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.86
 15
supported
*.mail.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.93
 15
supported
*.mail.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.92
 15
supported
*.mail.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.84
 15
supported
*.mail.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
mx-aol.mail.gm0.yahoodns.net
67.195.204.75
 15
supported
*.mail.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s

Outgoing Mails

We have not received any emails from a @aol.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.mail.am0.yahoodns.net,O=Oath Holdings Inc.,L=Sunnyvale,ST=California,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Sunnyvale
Organization (O)
  • Oath Holdings Inc.
Common Name (CN)
  • *.mail.am0.yahoodns.net
Alternative Names
  • *.mail.am0.yahoodns.net
  • *.am0.yahoodns.net
  • *.sbcglobal.am0.yahoodns.net
  • *.mail.gm0.yahoodns.net
  • *.gm0.yahoodns.net
  • *.biz.mail.yahoo.com
  • *.bullet.am0.yahoodns.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • DigiCert SHA2 High Assurance Server CA
validity period
Not valid before
2023-03-14
Not valid after
2023-09-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
64:4B:94:CC:82:55:BA:77:FD:40:17:FE:FF:3F:DB:36:DA:FF:5F:93:C9:7D:6A:6F:49:31:63:C7:B5:27:C6:15
SHA1
A5:1E:01:9A:F6:8B:E1:C5:BD:FC:E5:2F:CC:E2:1D:7E:30:1B:06:92
X509v3 extensions
authorityKeyIdentifier
  • keyid:51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B
subjectKeyIdentifier
  • F6:00:73:7C:95:A2:5F:5C:E7:CF:5D:3D:DB:13:E9:E4:56:73:BE:40
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/sha2-ha-server-g6.crl
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
  • 03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
  • Timestamp : Mar 14 00:04:40.404 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:87:DF:C3:3F:2F:46:81:B7:83:30:F2:
  • 98:A0:C4:60:BD:F4:67:98:58:93:C9:2B:32:A0:84:F8:
  • 1F:4E:2A:D6:36:02:21:00:83:12:52:6E:F6:FC:C6:5B:
  • 1E:24:38:B2:87:BF:43:1E:5E:DF:8F:AF:72:A4:27:36:
  • AB:33:AC:97:36:03:1C:37
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B3:73:77:07:E1:84:50:F8:63:86:D6:05:A9:DC:11:09:
  • 4A:79:2D:B1:67:0C:0B:87:DC:F0:03:0E:79:36:A5:9A
  • Timestamp : Mar 14 00:04:40.389 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C3:C1:40:B2:E9:C4:9D:D9:BF:C2:1A:
  • 11:40:6A:1D:B9:D5:CE:94:7A:71:E7:51:FE:47:6E:AE:
  • F9:A0:0B:A7:7C:02:20:72:BC:3C:CF:58:A1:12:4C:6D:
  • 26:6E:68:01:16:D3:AA:5F:BB:DE:73:5F:C1:CE:D1:09:
  • EE:98:86:1E:74:90:C3
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
  • 5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
  • Timestamp : Mar 14 00:04:40.341 2023 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:87:8C:1E:46:49:02:10:6B:53:8C:09:
  • 98:B2:C1:96:EA:8B:AD:F7:A4:59:54:19:D9:D8:B2:02:
  • 1D:64:12:C4:48:02:20:2E:72:51:0D:CD:DB:C8:69:1E:
  • AF:E7:15:40:13:B4:75:FB:53:57:3F:55:E0:99:F9:21:
  • F0:1E:A4:DB:C7:4C:1E