SSL-Tools

SSL check results of mozilla.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for mozilla.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 04 Jun 2020 10:02:27 +0000

The mailservers of mozilla.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mozilla.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
smtp1.mdc2.mozilla.com
63.245.210.103
 10
supported
smtp.mozilla.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s

Outgoing Mails

We have not received any emails from a @mozilla.net address so far. Test mail delivery

Certificates

First seen at:

CN=smtp.mozilla.org,OU=WebOps,O=Mozilla Corporation,L=Mountain View,ST=California,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Mountain View
Organization (O)
  • Mozilla Corporation
Organizational Unit (OU)
  • WebOps
Common Name (CN)
  • smtp.mozilla.org
Alternative Names
  • smtp1.mdc1.mozilla.com
  • smtp1.private.mdc1.mozilla.com
  • smtp1.private.mdc2.mozilla.com
  • smtp.mozilla.com
  • smtp.mozilla.org
  • smtp1.mdc2.mozilla.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • DigiCert SHA2 Secure Server CA
validity period
Not valid before
2019-10-23
Not valid after
2020-11-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
F4:74:ED:4C:CE:11:DE:E2:EC:CA:D7:33:B2:3B:FF:06:4C:76:A6:98:73:A5:14:6B:15:E9:29:66:0F:48:A4:CD
SHA1
26:F4:EF:56:51:F3:A9:1D:DD:AB:1C:5C:39:38:23:AF:9E:1E:5F:B5
X509v3 extensions
authorityKeyIdentifier
  • keyid:0F:80:61:1C:82:31:61:D5:2F:28:E7:8D:46:38:B4:2C:E1:C6:D9:E2
subjectKeyIdentifier
  • D3:49:21:99:6A:5F:2E:54:C7:5A:51:29:78:88:64:49:0B:19:1F:85
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/ssca-sha2-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/ssca-sha2-g6.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Oct 23 15:03:37.306 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:5C:6D:3B:CA:06:75:99:07:49:BA:C1:EF:
  • C0:50:36:E9:E0:43:4C:FC:6D:EE:A9:D3:F7:5E:C1:E8:
  • 62:95:57:06:02:21:00:86:0D:BA:1C:1B:F1:94:9A:4C:
  • 94:A2:B8:E0:F6:D6:80:D7:33:BB:4E:C4:87:57:39:27:
  • 38:40:B1:58:6A:08:0E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5E:A7:73:F9:DF:56:C0:E7:B5:36:48:7D:D0:49:E0:32:
  • 7A:91:9A:0C:84:A1:12:12:84:18:75:96:81:71:45:58
  • Timestamp : Oct 23 15:03:37.290 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:04:FC:0A:E8:50:99:4E:1C:29:3E:C5:32:
  • 54:78:26:42:E1:B7:C5:33:C4:27:A1:38:0D:2E:E1:37:
  • 1C:42:6F:56:02:20:40:8C:48:77:A1:72:22:C8:5C:67:
  • BE:DA:E8:1B:0E:C3:D1:E2:9E:14:8B:1A:27:BC:3E:94:
  • D4:6C:F0:B8:29:F3