SSL-Tools

SSL check results of bakk.dev

NEW You can also bulk check multiple servers.

Discover if the mail servers for bakk.dev can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 18 Mar 2023 15:14:16 +0000

We can not guarantee a secure connection to the mailservers of bakk.dev!

Please contact the operator of bakk.dev and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/bakk.dev

Servers

Incoming Mails

These servers are responsible for incoming mails to @bakk.dev addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
inbound.postmarkapp.com
52.213.211.243
 9
supported
*.postmarkapp.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s
inbound.postmarkapp.com
52.51.73.41
 9
supported
*.postmarkapp.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
inbound.postmarkapp.com
52.210.157.196
 9
supported
*.postmarkapp.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
mx1.bakk.dev
164.68.97.209
Results incomplete
10
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @bakk.dev address so far. Test mail delivery

Certificates

First seen at:

CN=*.postmarkapp.com

Certificate chain
Subject
Common Name (CN)
  • *.postmarkapp.com
Alternative Names
  • *.postmarkapp.com
  • api.postmarkapp.com
  • postmarkapp.com
  • smtp.postmarkapp.com
  • www.postmarkapp.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust TLS RSA CA G1
validity period
Not valid before
2022-08-04
Not valid after
2023-09-04
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
A5:34:E9:D4:47:22:BA:B1:A6:CA:9F:A6:57:BB:79:A9:16:0E:5D:7C:A3:78:ED:9E:B4:39:1F:B4:CD:6A:33:3E
SHA1
DA:FF:27:4B:44:98:12:DF:CB:4E:2D:70:12:12:C4:91:7E:F1:DE:1C
X509v3 extensions
authorityKeyIdentifier
  • keyid:94:4F:D4:5D:8B:E4:A4:E2:A6:80:FE:FD:D8:F9:00:EF:A3:BE:02:57
subjectKeyIdentifier
  • 84:56:72:C5:CB:E5:95:45:07:32:04:57:94:BF:AA:CB:B5:B8:6C:A6
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
  • 03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
  • Timestamp : Aug 4 14:52:51.577 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:BB:35:78:A2:CE:01:3C:6C:DE:29:DA:
  • 4E:C6:47:22:C0:EE:BA:BA:05:74:7E:18:0D:B9:81:4F:
  • E1:77:26:CD:D2:02:21:00:EA:AB:51:9B:A0:2E:CF:EB:
  • B3:1B:18:37:39:9A:F3:97:6E:FA:EF:FD:FC:4F:AF:CD:
  • A3:45:C2:8F:61:53:52:33
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 35:CF:19:1B:BF:B1:6C:57:BF:0F:AD:4C:6D:42:CB:BB:
  • B6:27:20:26:51:EA:3F:E1:2A:EF:A8:03:C3:3B:D6:4C
  • Timestamp : Aug 4 14:52:51.654 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:ED:FE:C7:A8:D1:09:78:91:35:06:45:
  • 4F:2A:9A:FE:61:13:C6:57:08:6C:E5:B0:53:19:C5:66:
  • AE:13:D4:2C:C1:02:21:00:A4:C6:96:E9:8E:93:BD:8D:
  • 1D:0C:3D:38:05:44:F6:9F:87:F3:DB:EB:F0:55:0B:57:
  • 18:EE:F9:E5:F4:35:8C:A3
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
  • 5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
  • Timestamp : Aug 4 14:52:51.643 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B2:05:C9:06:C7:8B:69:AA:DB:9F:26:
  • F6:44:5A:AC:78:0B:08:91:65:DB:C7:ED:CB:D8:30:75:
  • 1F:E0:19:AD:56:02:20:54:9C:88:D6:C7:60:27:73:86:
  • AF:41:03:12:62:94:9D:B1:C8:FE:85:9C:BE:34:02:3A:
  • 9E:99:C9:48:58:FA:7A