mail.techsupport.is - TLS / STARTTLS Test

Discover if the mail servers for mail.techsupport.is can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 11 Dec 2023 12:13:23 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The mailservers of mail.techsupport.is can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.techsupport.is addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.techsupport.is 188.166.123.177	-	supported	*.techsupport.is	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-12-11 2 s
mail.techsupport.is 2a03:b0c0:2:d0::def:6001	-	supported	*.techsupport.is	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-12-11 2 s

Outgoing Mails

We have not received any emails from a @mail.techsupport.is address so far. Test mail delivery

Certificates

First seen at: 2023-12-11

CN=*.techsupport.is

Certificate chain

*.techsupport.is
- 2025-01-11 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

*.techsupport.is

Alternative Names

*.techsupport.is
techsupport.is

Issuer

Country (C)

Organization (O)

GlobalSign nv-sa

Common Name (CN)

AlphaSSL CA - SHA256 - G4

validity period

Not valid before: 2023-12-11
Not valid after: 2025-01-11

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: BB:FB:CF:95:D2:A3:92:69:80:ED:22:51:2E:4F:F3:4B:6F:C7:F5:85:25:85:45:9E:66:D8:6D:30:DB:A8:1B:1D
SHA1: E7:C0:76:88:38:51:54:62:7A:59:F9:44:17:FD:66:E7:DD:4F:9F:C0

X509v3 extensions

authorityInfoAccess

CA Issuers - URI:http://secure.globalsign.com/cacert/alphasslcasha256g4.crt
OCSP - URI:http://ocsp.globalsign.com/alphasslcasha256g4

certificatePolicies

Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.4146.10.1.3
CPS: https://www.globalsign.com/repository/

crlDistributionPoints

Full Name:
URI:http://crl.globalsign.com/alphasslcasha256g4.crl

authorityKeyIdentifier

keyid:4F:CB:AC:A8:C2:EF:AB:DD:83:6F:6B:BF:CE:98:3D:5C:58:25:76:15

subjectKeyIdentifier

D4:A3:D2:51:32:ED:20:4E:F6:22:09:39:A7:73:3A:28:04:FD:F5:3F

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Dec 11 11:35:53.380 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:31:E8:5D:B1:DA:3B:E8:BD:8E:F6:64:EA:
AF:A0:A9:12:6C:8E:B7:6E:78:CD:56:35:FA:FD:FC:AA:
8B:8D:11:05:02:20:53:C0:55:17:86:95:F1:85:3F:44:
75:65:59:51:84:7D:6E:B2:B0:AA:D8:CC:DC:B0:C6:AF:
08:09:4F:CF:C3:F2
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Dec 11 11:35:53.745 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DA:AD:F8:F5:A4:2C:FF:9C:C4:64:1F:
4E:AC:5F:5A:E0:B2:26:CF:72:DC:6A:82:66:B3:E8:8F:
3C:18:B5:E3:5F:02:20:29:FD:4A:6F:AB:55:A8:62:2C:
FB:F2:EA:A3:63:E0:79:7C:B0:AE:2D:CA:0F:4B:9A:BC:
26:BC:A7:9B:A8:D0:C3
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Dec 11 11:35:53.405 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AF:24:99:D2:0C:31:B7:9D:1E:5A:CC:
91:A3:04:39:48:97:7B:56:F2:3A:31:03:FA:BE:C9:98:
C7:03:E4:08:FE:02:21:00:A3:79:22:66:F0:A9:94:C0:
73:B5:17:B0:29:9B:E3:2B:06:6A:79:C3:31:E7:35:E4:
CE:E4:3B:84:1D:26:76:DF

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mail.techsupport.is	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	valid

SSL check results of mail.techsupport.is