SSL-Tools

SSL check results of schorers.org

NEW You can also bulk check multiple servers.

Discover if the mail servers for schorers.org can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 27 Apr 2024 10:16:45 +0000

The mailservers of schorers.org can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @schorers.org addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
schorers.org
62.214.245.210
 50
supported
schorers.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
hosted.mailcow.de
2a00:f820:417::202
 60
supported
archiv.mailcow.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
hosted.mailcow.de
5.1.76.202
 60
supported
archiv.mailcow.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
4 s

Outgoing Mails

We have not received any emails from a @schorers.org address so far. Test mail delivery

Certificates

First seen at:

CN=schorers.org

Certificate chain
  • schorers.org
    • remaining
    • 3072 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • schorers.org
Alternative Names
  • autoconfig.schorers.org
  • autodiscover.schorers.org
  • cloud.schorers.org
  • cockpit.schorers.org
  • collabora.schorers.org
  • ha.schorers.org
  • mail.schorers.org
  • schorers.org
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-20
Not valid after
2024-07-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
99:A1:CC:C0:11:C5:19:A7:50:84:5C:BF:1B:A1:03:36:1B:4A:05:72:72:36:B5:78:F8:AD:A5:35:9E:37:76:36
SHA1
14:54:69:4F:27:44:87:2C:04:5D:D4:79:CE:4A:AB:A2:9C:BA:36:1B
X509v3 extensions
subjectKeyIdentifier
  • 6C:04:6B:47:FE:A0:FB:7F:F1:B9:0E:28:D1:A0:20:6E:8D:75:88:79
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
  • 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
  • Timestamp : Apr 20 22:00:15.728 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C1:E2:64:8A:C2:5D:FE:DE:AF:54:42:
  • C4:F9:D7:9F:91:17:43:39:F0:FA:36:7A:93:EE:86:42:
  • 62:5A:F8:C8:06:02:21:00:C1:89:E7:B4:74:6B:3C:E6:
  • AB:4C:EF:60:05:DA:1C:79:FE:F8:25:F0:B7:B4:4A:45:
  • 0E:A5:B7:37:AE:BA:F1:38
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Apr 20 22:00:15.771 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:92:E5:8E:C9:01:38:F9:81:C6:DF:EF:
  • 95:9A:DB:53:22:F9:93:08:03:E7:F1:D0:B1:FA:3F:7F:
  • 45:79:61:87:A3:02:20:56:1A:72:66:AF:5B:07:47:DD:
  • 1A:3E:5F:7B:3C:6F:46:19:22:1C:17:33:4A:14:6A:75:
  • D7:C1:FC:9C:4B:A4:5A
First seen at:

CN=archiv.mailcow.de

Certificate chain
  • archiv.mailcow.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • archiv.mailcow.de
Alternative Names
  • archiv.mailcow.de
  • archive.mailcow.de
  • autoconfig.mailcow.de
  • autodiscover.mailcow.de
  • hosted.mailcow.de
  • mailcow.de
  • sogo.mailcow.de
  • webmail.mailcow.de
  • www.mailcow.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-03-09
Not valid after
2024-06-07
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
5A:27:2A:62:55:E2:EE:AC:ED:5B:91:31:4C:B5:8F:5E:B8:06:0C:05:7F:55:4F:5B:56:07:21:9D:8E:41:40:CC
SHA1
5E:D8:6E:CB:56:25:A4:D5:38:DC:A0:22:26:4E:E1:F7:74:36:E1:FF
X509v3 extensions
subjectKeyIdentifier
  • FE:76:1C:C4:76:B1:CF:12:7E:CC:4E:36:CB:0F:AA:63:B2:CE:A0:E0
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Mar 9 23:00:50.763 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:40:1E:8E:69:02:9F:12:09:47:8F:C2:43:
  • 07:B2:AE:09:90:E9:8A:9F:4C:8F:A4:BC:39:62:A2:68:
  • D2:56:D0:A2:02:21:00:B5:55:81:8E:51:11:A5:4F:9E:
  • 89:AB:34:4E:42:D4:29:03:5D:38:92:FB:FB:8B:27:CC:
  • 6E:69:AF:AA:DD:C4:D7
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Mar 9 23:00:51.345 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C5:FB:71:69:09:5D:35:69:A1:89:70:
  • E0:18:B3:2D:DC:6C:FA:50:03:9D:61:7E:43:B9:9B:E9:
  • 15:F0:C6:4A:44:02:20:1D:C4:64:2D:38:D5:0A:03:38:
  • ED:E8:19:96:CA:25:98:24:9F:58:3D:E9:A3:73:FF:45:
  • 31:9D:BF:57:40:73:4E

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.hosted.mailcow.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.hosted.mailcow.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid