Discover if the mail servers for rfh-koeln.de can be reached through a secure connection.
To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.
Report created Fri, 16 Feb 2024 15:35:55 +0000
These servers are responsible for incoming mails to @rfh-koeln.de addresses.
| Hostname / IP address | Priority | STARTTLS | Certificates | Protocol | ||
|---|---|---|---|---|---|---|
|
a1851.mx.srv.dfn.de
194.95.232.129
Results incomplete
|
10 |
supported
|
not checked |
|
7 s
|
|
|
b1851.mx.srv.dfn.de
194.95.234.129
Results incomplete
|
10 |
supported
|
not checked |
|
7 s
|
|
|
c1851.mx.srv.dfn.de
194.95.238.129
Results incomplete
|
10 |
supported
|
not checked |
|
7 s
|
We have not received any emails from a @rfh-koeln.de address so far. Test mail delivery
No Certificates found
DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.
| Name | Options | DNSSEC | Matches |
|---|---|---|---|
| _25._tcp.a1851.mx.srv.dfn.de |
|
valid
|
— |
| _25._tcp.a1851.mx.srv.dfn.de |
|
valid
|
— |
| _25._tcp.b1851.mx.srv.dfn.de |
|
valid
|
— |
| _25._tcp.b1851.mx.srv.dfn.de |
|
valid
|
— |
| _25._tcp.c1851.mx.srv.dfn.de |
|
valid
|
— |
| _25._tcp.c1851.mx.srv.dfn.de |
|
valid
|
— |
Heartbleed