SSL check results of aol.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for aol.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 18 Nov 2024 07:34:23 +0000

The mailservers of aol.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @aol.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx-aol.mail.gm0.yahoodns.net
67.195.204.75
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.86
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.93
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.84
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
mx-aol.mail.gm0.yahoodns.net
67.195.204.80
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.92
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s

Outgoing Mails

We have not received any emails from a @aol.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.am0.yahoodns.net,O=Yahoo Holdings Inc.,L=New York,ST=New York,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • New York
Locality (L)
  • New York
Organization (O)
  • Yahoo Holdings Inc.
Common Name (CN)
  • *.am0.yahoodns.net
Alternative Names
  • *.am0.yahoodns.net
  • *.mail.am0.yahoodns.net
  • *.sbcglobal.am0.yahoodns.net
  • *.mail.gm0.yahoodns.net
  • *.gm0.yahoodns.net
  • *.biz.mail.yahoo.com
  • *.bullet.am0.yahoodns.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • DigiCert SHA2 High Assurance Server CA
validity period
Not valid before
2024-07-30
Not valid after
2025-01-22
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
79:90:DF:BA:ED:0C:95:D0:4A:F6:B7:13:92:01:A2:63:EE:E9:14:FA:93:A5:08:64:19:4F:65:65:73:BF:27:1F
SHA1
68:AF:FD:48:89:17:BB:54:C2:38:FB:3B:99:D0:19:F9:2D:30:56:29
X509v3 extensions
authorityKeyIdentifier
  • keyid:51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B
subjectKeyIdentifier
  • 30:C4:A9:DA:C7:52:A6:D7:BF:EB:BB:AD:64:19:13:28:85:43:85:E0
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/sha2-ha-server-g6.crl
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
  • 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
  • Timestamp : Jul 30 06:37:12.433 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:FC:25:66:EF:61:5F:28:16:76:EC:30:
  • E7:8A:57:4E:FC:8E:37:F0:5A:C6:29:A6:86:14:68:C8:
  • EB:4C:8B:A5:8A:02:21:00:97:70:83:5C:97:70:68:5C:
  • 63:00:75:BF:54:AF:4F:FA:23:7B:09:2F:4F:B1:B5:53:
  • 78:6B:97:3F:4A:AB:6C:3B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
  • D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
  • Timestamp : Jul 30 06:37:12.335 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B5:BB:A5:1C:34:DB:27:4D:61:6E:18:
  • DF:AA:91:F9:C1:5D:47:90:FB:EC:D4:7C:45:8C:5D:8E:
  • B3:F3:C2:06:1B:02:20:42:CF:CD:1F:3A:39:8D:95:70:
  • 89:79:2B:F6:C3:45:40:4B:E4:C5:70:12:76:A8:AD:6F:
  • 70:12:08:A9:23:E0:0E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Jul 30 06:37:12.258 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:07:FD:90:DA:34:54:FD:69:CE:A2:0C:1F:
  • 7F:5F:DB:C6:0D:60:CA:43:17:14:14:47:02:A5:A2:8F:
  • 70:61:70:44:02:21:00:D6:99:C8:7C:A7:F6:41:CA:AA:
  • 79:D3:57:B0:7A:84:BF:6C:DA:88:D3:37:C8:38:00:74:
  • BE:F1:B0:61:B0:B3:3D