SSL check results of aol.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for aol.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sun, 14 Feb 2021 15:59:44 +0000

The mailservers of aol.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @aol.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx-aol.mail.gm0.yahoodns.net
98.136.96.92
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
11 s
mx-aol.mail.gm0.yahoodns.net
67.195.204.75
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
11 s
mx-aol.mail.gm0.yahoodns.net
67.195.204.80
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.86
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s
mx-aol.mail.gm0.yahoodns.net
98.136.96.93
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
11 s
mx-aol.mail.gm0.yahoodns.net
67.195.228.84
15
supported
*.am0.yahoodns.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s

Outgoing Mails

We have not received any emails from a @aol.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.am0.yahoodns.net,O=Oath Inc,L=Sunnyvale,ST=California,C=US

Certificate chain
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Sunnyvale
Organization (O)
  • Oath Inc
Common Name (CN)
  • *.am0.yahoodns.net
Alternative Names
  • *.am0.yahoodns.net
  • *.mail.am0.yahoodns.net
  • *.sbcglobal.am0.yahoodns.net
  • *.mail.gm0.yahoodns.net
  • *.gm0.yahoodns.net
  • *.biz.mail.yahoo.com
  • *.bullet.am0.yahoodns.net
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • DigiCert SHA2 High Assurance Server CA
validity period
Not valid before
2020-10-12
Not valid after
2021-04-07
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
95:4B:3E:C5:31:90:B3:58:55:DA:4A:E9:AB:95:6A:0F:72:88:6E:73:8A:48:37:14:58:D5:4B:8E:C7:60:7F:4A
SHA1
83:B7:7D:E1:C8:3A:25:AB:FD:41:7C:F5:1B:07:FD:06:AC:3A:57:05
X509v3 extensions
authorityKeyIdentifier
  • keyid:51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B
subjectKeyIdentifier
  • 1D:72:35:AE:81:09:11:11:75:59:47:2E:A1:85:E9:59:E7:18:66:7E
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/sha2-ha-server-g6.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Oct 12 15:21:24.705 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:53:F2:3F:CA:B4:A8:44:F8:16:F2:47:08:
  • 72:9E:81:FE:0D:62:59:72:06:41:F5:2B:50:26:53:E7:
  • 2A:E6:C3:F4:02:20:4C:90:AE:2B:23:58:D9:33:5A:EA:
  • 40:9A:A0:5F:D6:A7:6A:40:DF:D4:FE:B3:4E:D1:BA:AB:
  • 23:E6:35:AC:70:65
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Oct 12 15:21:24.777 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:4B:86:80:FC:CD:CF:FB:15:DC:69:BB:A8:
  • 56:A4:13:C3:7B:91:D1:02:88:34:08:32:14:08:CF:48:
  • 6C:44:2E:ED:02:21:00:94:9F:3B:67:77:BF:75:A5:20:
  • 13:A5:FE:56:C8:E9:71:F7:4A:25:A2:4F:38:34:3B:C7:
  • 9F:3F:6C:39:43:35:8B