smart-nic.de - TLS / STARTTLS Test

Discover if the mail servers for smart-nic.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 24 Nov 2022 14:42:39 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of smart-nic.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @smart-nic.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail02.mail-gw.de 95.130.17.235	10	supported	*.mail-gw.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2022-11-24 13 s
mail03.mail-gw.de 95.130.17.227	20	supported	*.mail-gw.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2022-11-24 12 s

Outgoing Mails

We have not received any emails from a @smart-nic.de address so far. Test mail delivery

Certificates

First seen at: 2022-03-01

CN=*.mail-gw.de

Certificate chain

*.mail-gw.de
- 2023-03-06 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

*.mail-gw.de

Alternative Names

*.mail-gw.de
mail-gw.de

Issuer

Country (C)

State (ST)

Greater Manchester

Locality (L)

Salford

Organization (O)

Sectigo Limited

Common Name (CN)

Sectigo RSA Domain Validation Secure Server CA

validity period

Not valid before: 2022-02-03
Not valid after: 2023-03-06

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 48:CE:4D:9F:39:94:25:1D:F6:3A:D5:9B:CF:43:E7:7B:96:3E:30:D0:FB:D7:9D:22:DF:2D:92:9D:EB:8C:61:50
SHA1: 0D:2A:7D:FC:7F:CE:52:7D:80:F3:8E:E7:78:52:92:F8:13:77:8B:00

X509v3 extensions

authorityKeyIdentifier

keyid:8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1

subjectKeyIdentifier

14:82:B4:38:AB:96:48:D1:F1:A1:ED:5D:F0:D9:8C:29:EB:6D:96:BF

certificatePolicies

Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1

authorityInfoAccess

CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
Timestamp : Feb 3 15:05:25.051 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:DE:95:80:59:12:5C:6D:F5:8A:A2:D4:
C4:43:1E:1E:36:8C:0E:68:99:DB:27:E5:C2:50:FE:89:
45:96:FB:D2:18:02:20:3B:2F:54:31:E9:AB:F3:3F:05:
9A:B5:84:F5:23:A0:9A:0D:D2:13:5A:9D:E3:09:E9:DC:
3A:43:96:1A:08:7D:28
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
Timestamp : Feb 3 15:05:24.994 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:2B:EA:38:40:B1:49:20:6E:47:C2:B0:83:
5D:FD:95:72:E6:78:66:62:29:54:F9:05:C3:8F:2A:1B:
7D:F6:2B:57:02:20:14:02:A2:2E:96:AA:C9:98:0A:2C:
F8:17:F5:B7:40:8E:C6:64:34:E5:63:A4:FC:26:EF:68:
1A:07:E9:67:51:19
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
Timestamp : Feb 3 15:05:24.948 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:0F:37:E6:82:1E:BA:0B:13:3D:E0:9A:A5:
ED:04:78:7F:70:CD:4D:14:E3:DB:E9:AC:9E:0C:B2:AA:
19:A4:BC:5C:02:21:00:A3:6D:9B:6D:6E:8C:51:61:4D:
E5:F1:4C:82:F8:37:AD:2C:58:92:2F:0B:8B:A6:BA:ED:
EF:90:2C:D8:4A:1E:92

SSL check results of smart-nic.de