berlincert.de - TLS / STARTTLS Test

Discover if the mail servers for berlincert.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 11 Jun 2021 10:18:26 +0000

Certificates

Trustworthy
Protocol

Problems found
DANE

Missing

We can not guarantee a secure connection to the mailservers of berlincert.de!

Please contact the operator of berlincert.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/berlincert.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @berlincert.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mxa.tettke-it.de 2a01:4f8:c2c:a859::1 Results incomplete	10	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2021-06-11 11 s
mxa.tettke-it.de 116.203.209.17 Results incomplete	10	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2021-06-11 1 s
mxb.tettke-it.de 2a01:4f9:c010:62b5::1 Results incomplete	20	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2021-06-11 11 s
mxb.tettke-it.de 95.217.4.55	20	supported	mxb.tettke-it.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2021-06-11 6 s

Outgoing Mails

We have not received any emails from a @berlincert.de address so far. Test mail delivery

Certificates

First seen at: 2021-06-11

CN=mxb.tettke-it.de

Certificate chain

mxb.tettke-it.de
- 2021-07-26 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mxb.tettke-it.de

Alternative Names

mxb.tettke-it.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2021-04-27
Not valid after: 2021-07-26

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: D8:CB:E8:98:02:E0:13:61:40:93:D2:F0:E3:38:F8:0A:AC:A1:B8:23:76:24:0B:B3:A0:C9:B0:59:7E:88:79:22
SHA1: 58:B6:3D:71:7B:22:3F:A0:9E:A4:AE:56:8F:B1:E9:C2:58:F2:0A:BC

X509v3 extensions

subjectKeyIdentifier

BD:08:02:95:1E:99:12:08:55:E7:72:F6:06:07:8F:0B:53:DD:A3:AE

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
Timestamp : Apr 27 06:14:49.707 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:BD:37:3D:6E:E3:18:4B:BE:CB:95:0F:
A2:80:B4:57:8B:A0:A7:72:80:3E:A6:4C:F3:D3:3B:8D:
43:DF:5D:66:42:02:21:00:9B:B7:A9:53:25:00:76:B4:
C8:5F:43:65:BA:34:7C:FF:C1:9A:71:2B:B4:0E:02:C4:
91:8D:49:34:7B:0C:53:09
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
Timestamp : Apr 27 06:14:49.757 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:B1:8F:C9:34:D9:64:60:7A:80:02:8B:
26:EB:85:FA:44:2E:45:8E:5B:50:89:53:DE:BA:BD:C2:
28:45:05:3A:08:02:21:00:C9:B8:18:DE:7B:D3:AA:F0:
18:42:A0:C9:01:46:F9:61:CE:68:68:76:83:59:0F:BF:
58:93:0B:A1:92:19:7F:3F

SSL check results of berlincert.de