firefly.gnunet.org - TLS / STARTTLS Test

Discover if the mail servers for firefly.gnunet.org can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 29 Jun 2025 00:30:20 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of firefly.gnunet.org can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @firefly.gnunet.org addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
firefly.gnunet.org 193.5.87.219	-	supported	gnunet.org	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-06-29 2 s
firefly.gnunet.org 193.5.87.218	-	supported	gnunet.org	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-06-29 2 s
firefly.gnunet.org 2001:620:500:464::218	-	supported	gnunet.org	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-06-29 2 s
firefly.gnunet.org 2001:620:500:464::219	-	supported	gnunet.org	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-06-29 2 s

Outgoing Mails

We have not received any emails from a @firefly.gnunet.org address so far. Test mail delivery

Certificates

First seen at: 2025-06-25

CN=gnunet.org

Certificate chain

gnunet.org
- 2025-09-23 remaining
- 256 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

gnunet.org

Alternative Names

firefly.gnunet.org
gnunet.org
mta-sts.taler.net
taler.net

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-06-25
Not valid after: 2025-09-23

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: F2:48:16:6A:EB:51:D1:27:63:98:0F:F6:F5:92:CD:F9:19:A0:B3:3F:1C:54:78:D5:1D:9F:CA:2E:70:C5:15:06
SHA1: 00:11:B7:AF:18:15:51:BC:41:1C:7A:A8:8B:61:6E:AB:77:F3:2F:B0

X509v3 extensions

subjectKeyIdentifier

00:FB:4A:D4:8B:8B:B6:90:4D:33:B4:FC:A4:70:35:1B:08:34:19:AD

authorityKeyIdentifier

keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2

authorityInfoAccess

CA Issuers - URI:http://e6.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

crlDistributionPoints

Full Name:
URI:http://e6.c.lencr.org/52.crl

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Jun 25 21:20:31.197 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:B7:3B:20:F9:45:76:D4:73:C7:FD:BE:
9A:B4:82:A4:83:4C:84:79:EF:4F:AE:CB:05:8B:9C:26:
80:39:7D:40:0C:02:20:1B:AC:5A:FC:80:1B:22:43:F0:
C0:E8:B3:26:29:D7:E8:9B:5C:5A:44:F7:7E:D9:61:87:
3C:41:EA:3C:DA:57:06
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 1A:04:FF:49:D0:54:1D:40:AF:F6:A0:C3:BF:F1:D8:C4:
67:2F:4E:EC:EE:23:40:68:98:6B:17:40:2E:DC:89:7D
Timestamp : Jun 25 21:20:31.082 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:20:73:38:24:4C:AD:62:A3:18:08:33:6C:
19:EF:5E:70:BB:DC:A2:44:A2:7D:1A:28:A8:B1:28:3D:
ED:E8:7B:17:02:20:06:4E:FC:76:F6:51:9A:FF:5C:2C:
1C:A9:2F:79:C2:2F:39:05:FC:B2:06:B7:B6:D6:CF:C7:
79:4F:7E:23:36:FF

SSL check results of firefly.gnunet.org