comendatore.net - TLS / STARTTLS Test

Discover if the mail servers for comendatore.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 29 May 2020 00:30:40 +0000

Certificates

Problems found
Protocol

Secure
DANE

Missing

We can not guarantee a secure connection to the mailservers of comendatore.net!

Please contact the operator of comendatore.net and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/comendatore.net

Servers

Incoming Mails

These servers are responsible for incoming mails to @comendatore.net addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
equinoxe.comendatore.net 2001:41d0:8:bb47::1 Results incomplete	10		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2020-05-28 1 s
equinoxe.comendatore.net 5.135.180.71	10	supported	mail.fab-l3.org	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-05-28 2 s
fb.mail.gandi.net 217.70.178.217 Results incomplete	50	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2020-05-28 1 s

Outgoing Mails

We have not received any emails from a @comendatore.net address so far. Test mail delivery

Certificates

First seen at: 2020-05-28

CN=mail.fab-l3.org

Certificate chain

mail.fab-l3.org
- 2020-07-26 remaining
- 4096 bit
- sha256WithRSAEncryption
- Hostname Mismatch
- Unknown Authority

Subject

Common Name (CN)

mail.fab-l3.org

Alternative Names

mail.comendatore.net
mail.fab-l3.org
mail.fabshop-l3.fr
mail.ga-technologie.net
mail.les-bois-du-cendrou.com
mail.odc-france.fr
rooty.fr
rooty.me

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

Let's Encrypt Authority X3

validity period

Not valid before: 2020-04-27
Not valid after: 2020-07-26

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 25:AD:9F:BA:5F:A2:2D:35:A6:26:B2:F7:E4:04:C8:50:0E:93:23:A0:9E:63:56:B1:59:C6:54:EB:4F:57:FB:D7
SHA1: 4A:9E:09:C9:4F:0C:AD:22:AC:D9:D2:BC:8F:B4:AE:9F:CE:3A:00:BD

X509v3 extensions

subjectKeyIdentifier

50:D3:36:84:91:15:AA:2B:13:19:07:54:58:DE:3F:FB:3C:61:83:EC

authorityKeyIdentifier

keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1

authorityInfoAccess

OCSP - URI:http://ocsp.int-x3.letsencrypt.org
CA Issuers - URI:http://cert.int-x3.letsencrypt.org/

certificatePolicies

Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : F0:95:A4:59:F2:00:D1:82:40:10:2D:2F:93:88:8E:AD:
4B:FE:1D:47:E3:99:E1:D0:34:A6:B0:A8:AA:8E:B2:73
Timestamp : Apr 28 00:52:31.106 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:9C:54:59:FA:0F:92:E2:82:7F:29:E3:
AB:69:2A:D2:E5:F5:BF:6B:0F:89:7B:E3:87:EE:9C:73:
4F:AD:E4:70:8D:02:21:00:CB:3C:B9:9D:02:DA:C4:88:
EB:42:7A:24:D2:6E:41:82:92:DF:FA:4F:4F:64:A6:DA:
1B:5B:84:89:0D:71:59:3A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : B2:1E:05:CC:8B:A2:CD:8A:20:4E:87:66:F9:2B:B9:8A:
25:20:67:6B:DA:FA:70:E7:B2:49:53:2D:EF:8B:90:5E
Timestamp : Apr 28 00:52:31.088 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:23:86:A4:CD:D5:62:34:2A:C9:84:71:EC:
3A:1A:B0:26:75:4E:16:11:20:DF:76:98:99:17:1A:B2:
28:61:8C:9D:02:20:35:E6:47:1B:E0:C3:45:00:97:8B:
51:24:2B:21:88:91:36:E7:8D:A8:30:4F:D7:78:E4:D5:
52:73:00:A5:D6:DA

SSL check results of comendatore.net