cromos.com.br - TLS / STARTTLS Test

Discover if the mail servers for cromos.com.br can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 04 May 2021 13:39:42 +0000

Certificates

Problems found
Protocol

Problems found
DANE

Missing

We can not guarantee a secure connection to the mailservers of cromos.com.br!

Please contact the operator of cromos.com.br and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/cromos.com.br

Servers

Incoming Mails

These servers are responsible for incoming mails to @cromos.com.br addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx.cromos.com.br 200.255.140.3	5	supported	RJOMATDC01	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers supported SSL_RSA_WITH_RC4_128_SHA	TLSv1.0 SSLv3	2021-05-04 7 s
mail.cromos.com.br 200.255.140.5	10	supported	RJOMATDC01	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers supported SSL_RSA_WITH_RC4_128_SHA	TLSv1.0 SSLv3	2021-05-04 7 s
mail02.cromos.com.br 186.200.14.27 Results incomplete	20		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2021-05-04 4 s

Outgoing Mails

We have not received any emails from a @cromos.com.br address so far. Test mail delivery

Certificates

First seen at: 2021-05-04

CN=RJOMATDC01

Certificate chain

RJOMATDC01
- 2019-08-28 remaining
- 2048 bit
- sha1WithRSAEncryption
- Hostname Mismatch
- Expired
- Unknown Authority

Subject

Common Name (CN)

RJOMATDC01

Alternative Names

RJOMATDC01
rjomatdc01.corp.cromos.pvt
mail
mail.cromos.com.br
mail02
mail02.cromos.com.br
autodiscover
autodiscover.corp.cromos.pvt
autodiscover.cromos.com.br

Issuer

Domain Component (DC)

pvt
cromos
corp

Common Name (CN)

corp-RJOMATDC01-CA

validity period

Not valid before: 2017-08-28
Not valid after: 2019-08-28

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication

Fingerprints

SHA256: 1E:AC:81:08:25:50:B9:05:AC:A1:7F:B1:9E:66:82:26:D6:2D:98:B6:F3:13:3F:4B:0A:F1:88:0F:29:EA:17:EF
SHA1: 04:7C:BB:8D:37:92:B6:CB:31:56:A5:CF:47:14:B5:E7:D4:D2:B7:E4

X509v3 extensions

subjectKeyIdentifier

08:90:F2:4C:B2:B9:1E:23:E8:51:A5:19:F1:31:87:60:26:A6:18:4F

authorityKeyIdentifier

keyid:2D:A9:15:DE:2A:06:05:19:14:70:63:1E:49:53:F5:B7:69:43:D3:25

crlDistributionPoints

Full Name:
URI:ldap:///CN=corp-RJOMATDC01-CA,CN=RJOMATDC01,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=corp,DC=cromos,DC=pvt?certificateRevocationList?base?objectClass=cRLDistributionPoint
URI:http://rjomatdc01.corp.cromos.pvt/CertEnroll/corp-RJOMATDC01-CA.crl

authorityInfoAccess

CA Issuers - URI:ldap:///CN=corp-RJOMATDC01-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=corp,DC=cromos,DC=pvt?cACertificate?base?objectClass=certificationAuthority
CA Issuers - URI:http://rjomatdc01.corp.cromos.pvt/CertEnroll/RJOMATDC01.corp.cromos.pvt_corp-RJOMATDC01-CA.crt

1_3_6_1_4_1_311_20_2

...W.e.b.S.e.r.v.e.r

SSL check results of cromos.com.br