dkinc.de - TLS / STARTTLS Test

Discover if the mail servers for dkinc.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 21 May 2025 17:50:50 +0000

Certificates

Trustworthy
Protocol

Not checked
DANE

Missing

We can not guarantee a secure connection to the mailservers of dkinc.de!

Please contact the operator of dkinc.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/dkinc.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @dkinc.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.dkinc.de fe80::a8c0:aeff:fea3:28f5 Results incomplete	10		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2025-05-21 1 s
mail.dkinc.de 88.218.227.11	10	supported	dkinc.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-05-21 2 s
mail1.dkinc.de 88.218.227.11	20	supported	dkinc.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-05-21 2 s

Outgoing Mails

We have not received any emails from a @dkinc.de address so far. Test mail delivery

Certificates

First seen at: 2025-05-21

CN=dkinc.de

Certificate chain

dkinc.de
- 2025-07-06 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

dkinc.de

Alternative Names

chess.dkinc.de
cloud.dkinc.de
dkinc.de
mail.dkinc.de
mail1.dkinc.de
www.chess.dkinc.de
www.dkinc.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-04-07
Not valid after: 2025-07-06

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: C0:29:29:38:D4:CA:86:8B:34:88:B0:F7:7A:8A:CB:E6:0B:B1:1C:8F:FA:AB:35:34:DD:82:89:03:DE:B7:A6:84
SHA1: FB:84:67:2F:D0:03:F3:92:99:CB:6C:8D:37:F3:6A:74:EF:A3:D9:84

X509v3 extensions

subjectKeyIdentifier

D9:85:39:69:ED:31:0B:B8:C6:64:2F:99:B6:63:7E:64:23:15:FE:28

authorityKeyIdentifier

keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9

authorityInfoAccess

OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

crlDistributionPoints

Full Name:
URI:http://r11.c.lencr.org/101.crl

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
Timestamp : Apr 7 16:51:12.648 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:9B:84:D3:7B:F6:57:77:5A:B7:C0:8C:
C0:C9:42:B6:04:00:FC:9E:92:43:A0:60:55:48:E6:46:
AA:93:63:F5:68:02:21:00:DB:17:61:28:BF:EA:09:A7:
E1:AA:C9:D3:27:0E:5B:FE:AE:49:F5:E8:08:79:43:C2:
01:50:5E:20:52:5D:D5:6F
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Apr 7 16:51:14.586 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AD:DD:18:48:91:E9:D7:8B:D9:4D:C8:
85:EC:69:49:86:76:00:D8:61:59:70:F4:7D:81:C5:7E:
B0:DC:C6:C7:D7:02:21:00:F0:DB:E6:E1:D4:B2:4E:1A:
43:B0:5D:9B:90:8E:78:E3:C4:47:C5:17:BF:68:EA:A0:
80:77:EA:CD:EB:34:89:20

SSL check results of dkinc.de