SSL-Tools

SSL check results of bitwarden.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for bitwarden.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 25 Mar 2021 16:31:42 +0000

The mailservers of bitwarden.com can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @bitwarden.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
aspmx.l.google.com
2a00:1450:4025:c03::1b
 1
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
aspmx.l.google.com
142.251.9.27
 1
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
alt1.aspmx.l.google.com
2404:6800:4003:c06::1b
 5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s
alt1.aspmx.l.google.com
142.250.4.27
 5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s
alt2.aspmx.l.google.com
2404:6800:4008:c00::1b
 5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s
alt2.aspmx.l.google.com
108.177.97.27
 5
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
16 s
alt3.aspmx.l.google.com
2607:f8b0:400e:c00::1b
 10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s
alt3.aspmx.l.google.com
173.194.202.27
 10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
alt4.aspmx.l.google.com
2607:f8b0:4023:c03::1a
 10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
alt4.aspmx.l.google.com
74.125.137.27
 10
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s

Outgoing Mails

We have not received any emails from a @bitwarden.com address so far. Test mail delivery

Certificates

First seen at:

CN=mx.google.com,O=Google LLC,L=Mountain View,ST=California,C=US

Certificate chain
  • mx.google.com
    • remaining
    • 256 bit
    • sha256WithRSAEncryption
      • GTS CA 1O1
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • GlobalSign (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Mountain View
Organization (O)
  • Google LLC
Common Name (CN)
  • mx.google.com
Alternative Names
  • mx.google.com
  • alt1.aspmx.l.google.com
  • alt1.gmail-smtp-in.l.google.com
  • alt1.gmr-smtp-in.l.google.com
  • alt2.aspmx.l.google.com
  • alt2.gmail-smtp-in.l.google.com
  • alt2.gmr-smtp-in.l.google.com
  • alt3.aspmx.l.google.com
  • alt3.gmail-smtp-in.l.google.com
  • alt3.gmr-smtp-in.l.google.com
  • alt4.aspmx.l.google.com
  • alt4.gmail-smtp-in.l.google.com
  • alt4.gmr-smtp-in.l.google.com
  • aspmx.l.google.com
  • aspmx2.googlemail.com
  • aspmx3.googlemail.com
  • aspmx4.googlemail.com
  • aspmx5.googlemail.com
  • gmail-smtp-in.l.google.com
  • gmr-mx.google.com
  • gmr-smtp-in.l.google.com
  • mx1.smtp.goog
  • mx2.smtp.goog
  • mx3.smtp.goog
  • mx4.smtp.goog
  • smtp.google.com
Issuer
Country (C)
  • US
Organization (O)
  • Google Trust Services
Common Name (CN)
  • GTS CA 1O1
validity period
Not valid before
2021-02-23
Not valid after
2021-05-18
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
Fingerprints
SHA256
F8:04:12:43:06:7C:71:61:C2:20:75:6C:A8:40:4C:4A:5D:F3:B1:17:0A:DE:C6:53:1F:A8:E8:FC:6E:D0:E8:8E
SHA1
36:95:1D:A5:BC:35:D4:DB:3B:86:F8:DD:84:03:A9:A5:0A:D1:CC:74
X509v3 extensions
subjectKeyIdentifier
  • E5:68:DA:16:76:A4:55:2C:0A:D5:0C:E3:E4:33:37:BA:71:EB:60:D9
authorityKeyIdentifier
  • keyid:98:D1:F8:6E:10:EB:CF:9B:EC:60:9F:18:90:1B:A0:EB:7D:09:FD:2B
authorityInfoAccess
  • OCSP - URI:http://ocsp.pki.goog/gts1o1core
  • CA Issuers - URI:http://pki.goog/gsr2/GTS1O1.crt
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • Policy: 1.3.6.1.4.1.11129.2.5.3
crlDistributionPoints
  • Full Name:
  • URI:http://crl.pki.goog/GTS1O1core.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Feb 23 16:41:28.712 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:8F:28:D6:FE:04:AB:B1:5E:35:7A:72:
  • CD:9E:B3:48:B0:32:AF:7B:92:CE:05:B7:08:F5:67:04:
  • 52:A2:98:0E:8A:02:20:33:9A:03:0F:55:6B:79:84:E1:
  • 28:73:E3:A2:21:00:B6:27:1D:A9:4B:B3:EC:CA:0F:80:
  • 54:1A:7E:27:A7:CE:FA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:C0:95:EE:8D:72:64:0F:92:E3:C3:B9:1B:C7:12:A3:
  • 69:6A:09:7B:4B:6A:1A:14:38:E6:47:B2:CB:ED:C5:F9
  • Timestamp : Feb 23 16:41:28.750 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:06:23:0B:0A:01:C1:94:8A:50:A2:F9:21:
  • 59:4F:B7:9E:16:05:77:0B:C6:42:5E:44:19:69:CB:A2:
  • 0D:77:FD:69:02:20:70:87:97:37:54:31:76:74:B7:62:
  • 80:6D:4E:93:58:2A:A5:83:30:6A:89:80:44:0C:6D:99:
  • EB:CC:DF:21:1A:C1
First seen at:

CN=mx.google.com,O=Google LLC,L=Mountain View,ST=California,C=US

Certificate chain
  • mx.google.com
    • remaining
    • 256 bit
    • sha256WithRSAEncryption
      • GTS CA 1O1
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • GlobalSign (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption
Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Mountain View
Organization (O)
  • Google LLC
Common Name (CN)
  • mx.google.com
Alternative Names
  • mx.google.com
  • alt1.aspmx.l.google.com
  • alt1.gmail-smtp-in.l.google.com
  • alt1.gmr-smtp-in.l.google.com
  • alt2.aspmx.l.google.com
  • alt2.gmail-smtp-in.l.google.com
  • alt2.gmr-smtp-in.l.google.com
  • alt3.aspmx.l.google.com
  • alt3.gmail-smtp-in.l.google.com
  • alt3.gmr-smtp-in.l.google.com
  • alt4.aspmx.l.google.com
  • alt4.gmail-smtp-in.l.google.com
  • alt4.gmr-smtp-in.l.google.com
  • aspmx.l.google.com
  • aspmx2.googlemail.com
  • aspmx3.googlemail.com
  • aspmx4.googlemail.com
  • aspmx5.googlemail.com
  • gmail-smtp-in.l.google.com
  • gmr-mx.google.com
  • gmr-smtp-in.l.google.com
  • mx1.smtp.goog
  • mx2.smtp.goog
  • mx3.smtp.goog
  • mx4.smtp.goog
  • smtp.google.com
Issuer
Country (C)
  • US
Organization (O)
  • Google Trust Services
Common Name (CN)
  • GTS CA 1O1
validity period
Not valid before
2021-03-11
Not valid after
2021-06-03
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
Fingerprints
SHA256
99:86:92:B7:CC:F6:27:8E:24:A1:96:74:29:0E:A7:1E:80:AB:52:D7:54:39:DA:BB:35:A8:22:D3:ED:FB:03:AF
SHA1
86:D6:1B:85:DE:24:65:4E:80:ED:C1:9E:F0:CE:52:7A:CA:3E:BC:9D
X509v3 extensions
subjectKeyIdentifier
  • F2:FE:4C:19:5D:8D:C7:23:6E:0B:B3:AD:8C:3C:EE:8E:00:CC:17:CB
authorityKeyIdentifier
  • keyid:98:D1:F8:6E:10:EB:CF:9B:EC:60:9F:18:90:1B:A0:EB:7D:09:FD:2B
authorityInfoAccess
  • OCSP - URI:http://ocsp.pki.goog/gts1o1core
  • CA Issuers - URI:http://pki.goog/gsr2/GTS1O1.crt
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • Policy: 1.3.6.1.4.1.11129.2.5.3
crlDistributionPoints
  • Full Name:
  • URI:http://crl.pki.goog/GTS1O1core.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Mar 11 15:58:44.299 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:D3:08:75:99:9B:7F:BC:2A:C7:9F:EA:
  • C9:21:C0:C0:0E:54:EA:07:1A:62:75:99:FF:3E:4A:47:
  • E8:BC:55:17:85:02:20:2D:A7:7E:28:1A:F1:4E:6A:C1:
  • 57:0B:9C:8C:6F:72:74:6B:D2:30:64:8C:80:35:0B:84:
  • C0:DB:16:3D:58:D1:1B
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Mar 11 15:58:44.291 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:88:25:03:EC:D2:F5:FF:D4:60:67:D2:
  • 24:36:05:E9:2B:79:30:4D:70:D0:77:45:5A:F9:7C:4F:
  • 8F:11:D1:14:73:02:20:3C:FA:BE:33:3A:2D:0C:C2:26:
  • 9A:CF:CC:DF:AA:F3:3E:9C:4B:98:B6:CF:52:18:D4:14:
  • 69:45:7C:A5:12:94:79