hdb.be - TLS / STARTTLS Test

Discover if the mail servers for hdb.be can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 22 Jul 2021 08:13:48 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of hdb.be can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @hdb.be addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
d312171.a.ess.de.barracudanetworks.com 18.185.115.250	10	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-07-22 19 s
d312171.a.ess.de.barracudanetworks.com 18.185.115.251	10	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-07-22 19 s
d312171.a.ess.de.barracudanetworks.com 18.185.115.252	10	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-07-22 16 s
d312171.b.ess.de.barracudanetworks.com 18.185.115.250	20	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-07-22 25 s
d312171.b.ess.de.barracudanetworks.com 18.185.115.251	20	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-07-22 24 s
d312171.b.ess.de.barracudanetworks.com 18.185.115.252	20	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-07-22 15 s

Outgoing Mails

We have not received any emails from a @hdb.be address so far. Test mail delivery

Certificates

First seen at: 2020-10-19

CN=*.a.ess.de.barracudanetworks.com,O=Barracuda Networks\, Inc.,L=Campbell,ST=California,C=US

Certificate chain

*.a.ess.de.barracudanetworks.com
- 2021-10-19 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Country (C)

State (ST)

California

Locality (L)

Campbell

Organization (O)

Barracuda Networks, Inc.

Common Name (CN)

*.a.ess.de.barracudanetworks.com

Alternative Names

*.a.ess.de.barracudanetworks.com
*.b.ess.de.barracudanetworks.com
*.o.ess.de.barracudanetworks.com
a.ess.de.barracudanetworks.com
b.ess.de.barracudanetworks.com
o.ess.de.barracudanetworks.com

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

DigiCert SHA2 High Assurance Server CA

validity period

Not valid before: 2020-10-15
Not valid after: 2021-10-19

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: C4:2D:EF:14:6B:FC:AA:73:34:90:B3:71:DB:EA:2B:6C:20:15:DB:FF:80:DB:70:D3:09:E9:E4:26:FF:BB:66:F7
SHA1: 92:8F:24:0B:5C:2C:BB:27:EC:D2:66:0D:61:BA:09:78:3A:F1:CB:2C

X509v3 extensions

authorityKeyIdentifier

keyid:51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B

subjectKeyIdentifier

D8:62:0C:4A:B0:25:6D:BC:0E:9A:99:9E:68:04:22:3D:40:3A:D3:B0

crlDistributionPoints

Full Name:
URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
Full Name:
URI:http://crl4.digicert.com/sha2-ha-server-g6.crl

certificatePolicies

Policy: 2.16.840.1.114412.1.1
CPS: https://www.digicert.com/CPS
Policy: 2.23.140.1.2.2

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
Timestamp : Oct 15 22:02:03.137 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:B0:EE:13:DB:94:42:31:B9:F8:EA:F7:
47:9F:82:C5:4F:A4:1A:E7:59:93:C9:20:80:50:51:A3:
9A:9E:D5:F8:97:02:21:00:C4:6F:E0:83:5D:D3:BE:13:
21:30:05:75:09:B1:F9:A9:AD:0E:27:68:48:19:14:39:
E3:10:B1:51:BF:06:64:60
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
Timestamp : Oct 15 22:02:03.212 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:92:CF:0A:B3:CC:E7:4F:93:4A:73:E1:
6F:E8:5E:4D:38:05:1D:55:B9:37:CB:BE:EE:BC:B6:3E:
E7:7E:48:9D:F1:02:21:00:CF:F5:29:4F:40:07:CB:D7:
C3:C6:91:C2:AF:0C:12:E7:43:EF:09:BE:D4:88:9B:F1:
02:D1:A5:C5:BC:C8:03:A5

SSL check results of hdb.be