SSL check results of bdl.lu

NEW You can also bulk check multiple servers.

Discover if the mail servers for bdl.lu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 24 Nov 2022 13:37:20 +0000

The mailservers of bdl.lu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @bdl.lu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
smtpgw.bdl.lu
193.178.219.97
10
supported
*.bdl.lu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
12 s

Outgoing Mails

We have received emails from these servers with @bdl.lu sender addresses. Test mail delivery

Host TLS Version & Cipher
smtpgw.bdl.lu (193.178.219.97)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=*.bdl.lu,O=Banque de Luxembourg SA,L=Luxembourg City,C=LU

Certificate chain
Subject
Country (C)
  • LU
Locality (L)
  • Luxembourg City
Organization (O)
  • Banque de Luxembourg SA
Common Name (CN)
  • *.bdl.lu
Alternative Names
  • *.bdl.lu
  • bdl.lu
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • DigiCert TLS RSA SHA256 2020 CA1
validity period
Not valid before
2022-11-18
Not valid after
2023-11-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
20:C7:8F:87:D9:19:91:0C:69:1D:C0:8E:F8:5B:B1:56:3E:BF:34:9D:C8:E6:04:8C:38:A3:75:51:81:89:DB:39
SHA1
2D:AD:14:B5:34:72:A6:4F:2C:32:CC:16:09:7F:60:F6:D9:8D:2D:E0
X509v3 extensions
authorityKeyIdentifier
  • keyid:B7:6B:A2:EA:A8:AA:84:8C:79:EA:B4:DA:0F:98:B2:C5:95:76:B9:F4
subjectKeyIdentifier
  • E2:FD:DE:35:57:FC:5C:5E:50:08:D3:A8:9E:34:51:DC:D2:FE:32:46
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
  • Full Name:
  • URI:http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
  • 03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
  • Timestamp : Nov 18 09:53:41.188 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:3B:6E:4B:1D:97:95:00:0B:98:4A:82:94:
  • A1:E8:EE:D4:4B:53:5B:E8:B4:38:89:3E:22:F1:9F:32:
  • 60:28:97:73:02:20:11:5D:F6:AD:42:E6:60:CD:9E:3E:
  • 08:07:9E:52:43:30:C6:6B:C3:92:EB:17:97:B7:D3:48:
  • EE:1A:04:6E:E5:24
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B3:73:77:07:E1:84:50:F8:63:86:D6:05:A9:DC:11:09:
  • 4A:79:2D:B1:67:0C:0B:87:DC:F0:03:0E:79:36:A5:9A
  • Timestamp : Nov 18 09:53:41.298 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:51:29:9F:74:45:79:DD:35:DE:18:3A:C4:
  • 27:AF:41:C5:7A:35:CB:0A:FD:60:40:57:A2:EF:6D:4F:
  • E6:02:A8:89:02:20:74:62:B6:1D:A2:0C:08:F1:3E:AB:
  • 03:C6:94:8E:17:68:BD:88:C5:37:8B:91:44:B6:CD:3A:
  • 3D:2A:14:8E:DA:23
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
  • 5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
  • Timestamp : Nov 18 09:53:41.249 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B4:55:B5:D0:20:95:32:85:40:19:1D:
  • EA:AE:33:3F:02:98:2B:23:8D:5B:24:9A:77:A3:92:94:
  • 85:6F:40:F4:27:02:20:5F:98:B8:66:A8:0C:6F:0D:C5:
  • 38:EB:9C:17:5E:39:49:76:1C:4F:0D:E4:BD:E3:A3:C1:
  • 0F:E6:FB:58:C1:AE:93