dmees.de - TLS / STARTTLS Test

Discover if the mail servers for dmees.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 10 Nov 2024 01:31:15 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of dmees.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @dmees.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx1.ucscom.de 2a01:4f8:c17:5bd3::252	10	supported	mx1.ucscom.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-11-10 1 s
mx1.ucscom.de 188.245.80.252	10	supported	mx1.ucscom.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-11-10 1 s
mx2.ucscom.de 2a01:4f8:1c1e:a792::77	20	supported	mx2.ucscom.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-11-10 1 s
mx2.ucscom.de 157.90.29.77	20	supported	mx2.ucscom.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-11-10 1 s

Outgoing Mails

We have not received any emails from a @dmees.de address so far. Test mail delivery

Certificates

First seen at: 2024-11-09

CN=mx1.ucscom.de

Certificate chain

mx1.ucscom.de
- 2025-02-06 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mx1.ucscom.de

Alternative Names

mx1.ucscom.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-11-08
Not valid after: 2025-02-06

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 5B:0B:64:71:C0:87:90:D8:B0:94:4A:CF:22:0A:4D:F5:49:E7:05:A1:15:AB:2B:69:63:B6:00:EC:FD:1A:2D:23
SHA1: F2:FE:49:DD:2E:84:C0:C8:73:1B:8C:B4:E6:9C:70:65:DC:76:0F:1B

X509v3 extensions

subjectKeyIdentifier

09:48:42:F7:5B:E0:7D:8E:E8:D2:E6:72:99:FA:5E:68:52:68:2D:EE

authorityKeyIdentifier

keyid:C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9

authorityInfoAccess

OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
Timestamp : Nov 8 22:47:21.040 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:1F:F6:14:2B:1A:20:41:BE:C5:00:CF:47:
6D:EB:7B:8D:55:BB:6A:2D:DC:FD:08:99:2B:2F:83:06:
63:64:84:59:02:21:00:B9:94:49:5E:F1:3E:D9:A2:94:
EC:EE:41:05:8E:8A:7A:A9:C8:61:98:B4:FA:A4:2E:F7:
C1:49:5E:B1:36:49:4E
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Nov 8 22:47:22.817 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:83:34:A4:58:65:F8:DA:F5:D5:3A:11:
B2:D4:61:45:33:74:31:A1:98:03:94:76:FC:6C:97:E5:
56:2E:BA:AE:90:02:21:00:EC:10:D9:77:7C:D1:B9:D2:
EE:9A:15:84:72:C9:39:2E:EE:E8:94:99:6F:36:75:3C:
05:E6:10:DB:E5:92:C6:31

First seen at: 2024-11-09

CN=mx2.ucscom.de

Certificate chain

mx2.ucscom.de
- 2025-02-06 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mx2.ucscom.de

Alternative Names

mx2.ucscom.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-11-08
Not valid after: 2025-02-06

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 3E:7C:04:2E:F9:AF:F0:34:52:36:35:17:46:E4:DD:01:8E:11:94:3C:28:7D:B7:D4:07:82:B6:35:FC:3B:CD:79
SHA1: 46:01:47:32:C5:EA:3F:71:9B:65:66:58:BD:0E:F8:21:97:D3:68:C5

X509v3 extensions

subjectKeyIdentifier

0F:FF:5E:EE:DD:F3:7C:D2:A5:F0:B0:43:0F:A3:8E:55:C0:69:ED:21

authorityKeyIdentifier

keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8

authorityInfoAccess

OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Nov 8 15:49:09.485 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:0D:55:35:87:7E:AD:92:9F:14:CD:9B:DA:
23:2E:BB:75:27:91:E2:DF:2A:5A:35:7B:EE:51:BD:9D:
36:73:C5:DE:02:20:16:91:F4:67:6C:DC:FD:BE:B0:ED:
08:FE:8A:CD:EE:8D:A0:2D:71:0C:72:B3:5F:B1:CA:C9:
7B:CC:E7:54:1F:DC
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Nov 8 15:49:09.550 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:97:E5:73:37:04:74:0B:63:D5:4F:DB:
38:6F:5B:B5:4D:2C:BB:C6:26:01:6E:D3:D3:B7:D5:44:
F0:16:FB:49:65:02:20:45:67:27:C5:27:21:4C:72:1A:
33:BA:9F:03:D5:8C:29:CE:48:D0:11:86:4C:10:7E:BC:
F8:A7:67:23:82:CA:C1

SSL check results of dmees.de

Summary

The mailservers of dmees.de can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=mx1.ucscom.de

CN=mx2.ucscom.de