SSL check results of cms-basel.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for cms-basel.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 03 Dec 2019 06:25:36 +0000

The mailservers of cms-basel.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @cms-basel.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mta02.netgrouper.ch
212.243.121.35
10
supported
*.netgrouper.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
mta01.netgrouper.ch
91.209.170.35
20
supported
*.netgrouper.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @cms-basel.ch address so far. Test mail delivery

Certificates

First seen at:

CN=*.netgrouper.ch,O=swisspro AG,L=Chur,C=CH

Certificate chain
Subject
Country (C)
  • CH
Locality (L)
  • Chur
Organization (O)
  • swisspro AG
Common Name (CN)
  • *.netgrouper.ch
Alternative Names
  • *.netgrouper.ch
  • netgrouper.ch
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • DigiCert SHA2 High Assurance Server CA
validity period
Not valid before
2018-01-16
Not valid after
2021-03-04
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
44:36:2F:24:B7:7A:92:B0:A9:05:46:3E:E9:68:A3:D2:36:B8:6F:A5:33:A8:F6:F1:2F:F9:A5:11:02:AE:D0:75
SHA1
62:F6:29:04:AD:AC:3C:83:67:D7:F1:8D:3D:7F:31:D8:78:E5:60:BB
X509v3 extensions
authorityKeyIdentifier
  • keyid:51:68:FF:90:AF:02:07:75:3C:CC:D9:65:64:62:A2:12:B8:59:72:3B
subjectKeyIdentifier
  • 11:A7:A3:00:4F:23:8C:2F:38:D8:09:E2:BA:1E:64:E2:3D:5C:E9:EF
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/sha2-ha-server-g6.crl
  • Full Name:
  • URI:http://crl4.digicert.com/sha2-ha-server-g6.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/DigiCertSHA2HighAssuranceServerCA.crt