SSL-Tools

SSL check results of nexterra.ca

NEW You can also bulk check multiple servers.

Discover if the mail servers for nexterra.ca can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 11 Jan 2021 21:56:39 +0000

We can not guarantee a secure connection to the mailservers of nexterra.ca!

Please contact the operator of nexterra.ca and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/nexterra.ca

Servers

Incoming Mails

These servers are responsible for incoming mails to @nexterra.ca addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.nexterra.ca
64.251.80.50
 10
supported
NXT-EXCHANGE
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
7 s
mx1.dnsmadeeasy.com
208.80.120.10
Results incomplete
20
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
mx1.dnsmadeeasy.com
208.80.120.11
Results incomplete
20
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx2.dnsmadeeasy.com
208.94.150.201
Results incomplete
30
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx3.dnsmadeeasy.com
208.94.150.197
Results incomplete
40
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @nexterra.ca address so far. Test mail delivery

Certificates

First seen at:

CN=NXT-EXCHANGE

Certificate chain
  • NXT-EXCHANGE (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha1WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority
Subject
Common Name (CN)
  • NXT-EXCHANGE
Alternative Names
  • NXT-EXCHANGE
  • NXT-EXCHANGE.nexterra.local
Issuer

Certificate is self-signed.

validity period
Not valid before
2020-02-15
Not valid after
2025-02-15
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
07:3B:A6:C7:C8:3C:45:C5:D0:E3:2F:CC:80:4B:FA:5B:6A:82:6A:78:C5:7C:EC:DE:4D:B8:B1:DD:D5:A2:A5:9D
SHA1
B8:90:7C:7C:C0:9F:AC:74:69:3F:BC:5D:BB:8C:61:85:CE:82:25:43