SSL-Tools

SSL check results of baak-baustofftechnik.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for baak-baustofftechnik.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 23 Jan 2025 12:35:24 +0000

We can not guarantee a secure connection to the mailservers of baak-baustofftechnik.de!

Please contact the operator of baak-baustofftechnik.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/baak-baustofftechnik.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @baak-baustofftechnik.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx.baak-baustofftechnik.de
78.47.215.50
 20
supported
kunden.system-b.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s
mxlb.ispgateway.de
80.67.18.126
Results incomplete
100
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @baak-baustofftechnik.de address so far. Test mail delivery

Certificates

First seen at:

CN=kunden.system-b.de

Certificate chain
  • kunden.system-b.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • kunden.system-b.de
Alternative Names
  • kunden.system-b.de
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-12-07
Not valid after
2025-03-07
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
3E:C5:04:F1:B2:B7:0D:1B:B1:2A:49:BA:1A:76:F6:B0:CF:79:EA:0D:BF:CB:09:E2:DF:5D:D3:3F:B3:5A:FE:36
SHA1
AE:0A:B9:26:60:6C:B4:72:C3:6D:B3:8F:B4:3E:82:63:49:3D:5D:7E
X509v3 extensions
subjectKeyIdentifier
  • 6A:3D:EE:54:E2:4C:0B:67:D3:01:97:BA:DC:5A:A5:49:76:DA:61:2D
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 73:20:22:0F:08:16:8A:F9:F3:C4:A6:8B:0A:B2:6A:9A:
  • 4A:00:EE:F5:77:85:8A:08:4D:05:00:D4:A5:42:44:59
  • Timestamp : Dec 8 00:17:17.864 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:4C:AE:35:D9:79:99:6A:FF:FF:D1:7D:6D:
  • C7:87:DC:DF:D8:3C:3D:3E:95:CD:3C:90:86:ED:CA:29:
  • 70:35:DA:FE:02:20:5C:14:C3:CE:C4:61:4A:95:97:8A:
  • 0D:2C:0A:7E:72:41:D0:FC:61:AB:3D:75:E9:10:44:C4:
  • CC:05:A4:3E:30:0B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
  • 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
  • Timestamp : Dec 8 00:17:17.869 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F4:00:0D:60:74:73:6B:21:90:0B:F4:
  • ED:69:AE:62:05:72:8C:1C:44:FE:12:0A:9E:55:70:D3:
  • 30:56:10:7C:F8:02:21:00:E7:16:FA:29:31:72:AF:F5:
  • 9B:85:15:A0:FC:D8:FC:99:6F:94:DE:12:A6:AE:7D:82:
  • 16:85:74:8E:BA:AE:35:E9