barkowski.info - TLS / STARTTLS Test

Discover if the mail servers for barkowski.info can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 13 Feb 2024 14:16:09 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of barkowski.info can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @barkowski.info addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mgw2.barkowski.info 144.76.86.89	10	supported	fsncmail01.dc.barkowski.info	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-02-13 1 s
mgw1.barkowski.info 87.184.126.85	50	supported	btzcmail01.barkowski.info	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-02-13 2 s

Outgoing Mails

We have received emails from these servers with @barkowski.info sender addresses. Test mail delivery

Host	TLS Version & Cipher
mail.barkowski.info (5.9.97.238)	TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384	2021-06-12

Certificates

First seen at: 2024-02-13

CN=fsncmail01.dc.barkowski.info

Certificate chain

fsncmail01.dc.barkowski.info
- 2024-05-12 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

fsncmail01.dc.barkowski.info

Alternative Names

fsncmail01.dc.barkowski.info
mail.barkowski.info
mgw.dc.barkowski.info
mgw2.barkowski.info
smtp.barkowski.info

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-02-12
Not valid after: 2024-05-12

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: E7:0D:00:81:D0:9F:A4:0D:F3:CD:62:2E:BF:94:4E:F8:D1:D4:03:82:15:CD:B1:F3:8A:7E:0A:5A:EC:F7:5D:B2
SHA1: EB:32:F4:CA:4A:5D:66:AE:6C:79:BC:64:79:44:F0:2F:98:4F:3E:AD

X509v3 extensions

subjectKeyIdentifier

21:02:B6:9E:50:CF:7D:70:31:BD:2A:34:95:31:31:36:BA:B3:BC:4E

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Feb 12 14:49:25.927 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:B4:8E:DC:BF:E3:F2:09:E0:85:EA:08:
BF:0A:32:3D:69:7A:ED:AA:9B:C7:5A:65:5C:1E:E3:B5:
48:A4:4D:B4:7C:02:21:00:E1:7A:67:9A:BA:45:84:A0:
86:3E:BF:59:B9:08:A5:79:AB:FC:3A:26:A1:FC:03:E8:
28:8A:A5:47:75:82:7B:F7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Feb 12 14:49:25.928 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:C1:64:E6:A4:3A:77:28:4D:96:32:7C:
C4:32:A6:48:DF:98:F3:90:7B:73:71:27:44:5E:71:2C:
C8:C7:0A:92:5E:02:20:51:AB:18:0B:2B:CF:04:A0:68:
F4:8C:2B:EA:D0:E9:74:75:07:14:95:FE:96:5A:D7:28:
A4:B0:1D:8C:BB:3C:2B

First seen at: 2024-02-12

CN=btzcmail01.barkowski.info

Certificate chain

btzcmail01.barkowski.info
- 2024-05-12 remaining
- 4096 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

btzcmail01.barkowski.info

Alternative Names

btzcmail01.barkowski.info
btzcmail01.lan.barkowski.info
mail.lan.barkowski.info
mgw.lan.barkowski.info
mgw1.barkowski.info

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-02-12
Not valid after: 2024-05-12

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: DF:16:7A:97:3E:3D:6F:A0:70:91:42:1E:78:36:EC:96:15:63:D8:BA:39:85:F3:62:6B:56:5D:38:C5:04:D6:94
SHA1: 9A:4B:87:04:1D:2C:15:28:0D:38:45:C7:04:C1:6C:4B:2E:40:91:ED

X509v3 extensions

subjectKeyIdentifier

C6:F4:35:F0:36:23:33:1B:AD:25:FB:FC:B3:23:9D:34:CE:90:EB:54

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Feb 12 15:21:21.180 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:23:D5:5F:7B:84:D8:69:69:0C:A4:15:40:
29:E3:EC:28:31:00:26:4A:3B:AE:1A:84:24:EC:F3:04:
16:8B:9A:CE:02:20:76:2C:37:22:BB:78:73:1B:69:BA:
B0:7C:BB:AF:88:0E:F2:A5:D6:B8:8D:B0:F2:C6:43:25:
23:85:7A:72:B1:1B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Feb 12 15:21:21.692 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:39:7F:E5:42:72:4E:F4:37:DE:F4:DE:32:
7A:C3:6D:A9:0E:C2:F4:1B:D0:DD:68:B0:2A:4D:7E:4F:
2C:FF:E6:54:02:20:60:8F:4B:83:03:C5:B7:49:59:D4:
BB:5B:97:16:DE:EB:00:4A:8E:EE:E0:6D:E5:9F:D8:D8:
03:A1:CA:DA:54:22

SSL check results of barkowski.info

Summary

The mailservers of barkowski.info can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=fsncmail01.dc.barkowski.info

CN=btzcmail01.barkowski.info