SSL check results of bahsig.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for bahsig.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Fri, 26 Feb 2021 07:53:38 +0000

We can not guarantee a secure connection to the mailservers of bahsig.de!

Please contact the operator of bahsig.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/bahsig.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @bahsig.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mailgw00.bahsig.de
195.202.46.65
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mailgw01.bahsig.de
195.202.46.75
20
supported
mailgw01.bahsig.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
mailgw03.bahsig.de
195.202.46.66
Results incomplete
30 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mailgw02.bahsig.de
93.241.67.22
40
supported
mailgw02.bahsig.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
4 s
mailgw04.bahsig.de
195.202.46.67
Results incomplete
50 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have received emails from these servers with @bahsig.de sender addresses. Test mail delivery

Host TLS Version & Cipher
static11.bahsig.de (195.202.46.75)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=mailgw01.bahsig.de

Certificate chain
  • mailgw01.bahsig.de (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Unknown Authority

Subject
Common Name (CN)
  • mailgw01.bahsig.de
Alternative Names
  • mailgw01.bahsig.de
Issuer

Certificate is self-signed.

validity period
Not valid before
2021-02-25
Not valid after
2031-02-23
Fingerprints
SHA256
16:AC:F1:93:D1:15:D3:62:4B:6D:B7:A2:84:93:B6:D3:18:00:30:4C:1F:90:04:7A:61:AB:15:F5:8F:50:89:23
SHA1
7F:67:8B:B1:A7:B0:D4:D6:02:CA:51:9D:B8:7A:CF:5B:D6:61:E3:C4
First seen at:

CN=mailgw02.bahsig.de

Certificate chain
  • mailgw02.bahsig.de (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Unknown Authority

Subject
Common Name (CN)
  • mailgw02.bahsig.de
Alternative Names
  • mailgw02.bahsig.de
Issuer

Certificate is self-signed.

validity period
Not valid before
2021-02-25
Not valid after
2031-02-23
Fingerprints
SHA256
F3:EC:73:DE:27:60:01:2F:E0:4D:FC:B8:C6:C2:85:84:B8:0D:DE:5B:94:85:3C:2E:04:38:3D:FB:2F:EA:AB:07
SHA1
4B:F8:F5:DD:98:FB:18:EB:B2:6A:9E:3F:6E:31:91:A7:4C:EB:03:87