maili.de - TLS / STARTTLS Test

Discover if the mail servers for maili.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 02 Feb 2024 17:31:00 +0000

Certificates

Problems found
Protocol

Secure
DANE

Missing

The mailservers of maili.de can be reached through an encrypted connection.

However, we found problems that may affect the security.

Servers

Incoming Mails

These servers are responsible for incoming mails to @maili.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.h-email.net 178.62.199.248	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 6 s
mail.h-email.net 5.161.194.135	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 6 s
mail.h-email.net 167.235.143.33	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 5 s
mail.h-email.net 5.75.171.74	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 3 s
mail.h-email.net 91.107.214.206	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 6 s
mail.h-email.net 49.13.4.90	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 4 s
mail.h-email.net 5.161.98.212	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 7 s
mail.h-email.net 165.227.159.144	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 5 s
mail.h-email.net 165.227.156.49	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 4 s
mail.h-email.net 162.55.164.116	5	supported	mail.h-email.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-02 6 s

Outgoing Mails

We have not received any emails from a @maili.de address so far. Test mail delivery

Certificates

First seen at: 2023-03-19

CN=mail.h-email.net,O=mail,L=Ashburn,ST=Virginia,C=US

Certificate chain

mail.h-email.net (Certificate is self-signed.)
- 2023-12-12 remaining
- 4096 bit
- sha256WithRSAEncryption
- Expired
- Unknown Authority

Subject

Country (C)

State (ST)

Virginia

Locality (L)

Ashburn

Organization (O)

mail

Common Name (CN)

mail.h-email.net

Issuer

Certificate is self-signed.

validity period

Not valid before: 2022-12-12
Not valid after: 2023-12-12

Fingerprints

SHA256: 3C:2A:B9:49:2C:1E:AF:E7:1F:CE:A7:90:3E:42:32:7D:87:B8:F1:2E:17:0C:43:D2:F5:97:EA:2B:12:12:23:AE
SHA1: A6:4B:A6:10:FA:51:E7:55:0A:59:63:78:AF:9A:AE:8C:8A:EC:26:A0

X509v3 extensions

subjectKeyIdentifier

64:02:A4:3A:73:CE:66:32:E7:33:AA:25:18:63:25:65:59:85:ED:92

authorityKeyIdentifier

keyid:64:02:A4:3A:73:CE:66:32:E7:33:AA:25:18:63:25:65:59:85:ED:92

SSL check results of maili.de