SSL check results of benny-pb.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for benny-pb.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sun, 17 Sep 2023 06:08:09 +0000

We can not guarantee a secure connection to the mailservers of benny-pb.de!

Please contact the operator of benny-pb.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/benny-pb.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @benny-pb.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
fledermaus.benny-pb.de
2a03:4000:2:98f::1
Results incomplete
10
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
fledermaus.benny-pb.de
46.38.235.64
Results incomplete
10
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
4 s
hosting.benny-pb.de
2a01:4f8:c2c:d311::1
11
supported
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
hosting.benny-pb.de
5.75.158.0
11
supported
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s

Outgoing Mails

We have not received any emails from a @benny-pb.de address so far. Test mail delivery

Certificates

First seen at:

OU=mailcow,O=mailcow,L=PB,ST=NRW,C=DE

Certificate chain
  • mailcow (Certificate is self-signed.)
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority

Subject
Country (C)
  • DE
State (ST)
  • NRW
Locality (L)
  • PB
Organization (O)
  • mailcow
Organizational Unit (OU)
  • mailcow
Issuer

Certificate is self-signed.

validity period
Not valid before
2023-07-13
Not valid after
2024-07-12
Fingerprints
SHA256
28:D3:68:27:36:31:C8:6D:7E:A1:63:31:53:CF:7D:34:83:C2:11:67:9C:9F:41:9D:1B:CA:47:E5:E9:85:BA:FC
SHA1
2D:42:41:3D:D0:06:FF:73:88:52:61:56:4C:AF:5B:F0:D8:07:59:47
X509v3 extensions
subjectKeyIdentifier
  • D7:E8:76:E6:3E:CE:56:E2:24:16:D5:48:12:50:7A:0F:EB:CF:C1:4C
authorityKeyIdentifier
  • keyid:D7:E8:76:E6:3E:CE:56:E2:24:16:D5:48:12:50:7A:0F:EB:CF:C1:4C

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.fledermaus.benny-pb.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.hosting.benny-pb.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid