cock.li - TLS / STARTTLS Test

Discover if the mail servers for cock.li can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 28 Jul 2025 19:29:09 +0000

Certificates

Trustworthy
Protocol

Problems found
DANE

Missing

We can not guarantee a secure connection to the mailservers of cock.li!

Please contact the operator of cock.li and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/cock.li

Servers

Incoming Mails

These servers are responsible for incoming mails to @cock.li addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx1.cock.li 2001:ac8:7d:1e::c0cc:4	10	supported	mx1.cock.li	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-07-28 11 s
mx1.cock.li 37.120.193.125	10	supported	mx1.cock.li	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2025-07-28 7 s
mx2.cock.li 2001:ac8:7d:1e::c0cc:2 Results incomplete	20		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2025-07-28 11 s
mx2.cock.li 37.120.193.123 Results incomplete	20	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2025-07-28 4 s

Outgoing Mails

We have received emails from these servers with @cock.li sender addresses. Test mail delivery

Host	TLS Version & Cipher
mx1.cock.li (185.10.68.5)	TLSv1.3 TLS_AES_256_GCM_SHA384	2020-02-08

Certificates

First seen at: 2025-07-28

CN=mx1.cock.li

Certificate chain

mx1.cock.li
- 2025-10-16 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mx1.cock.li

Alternative Names

mx1.cock.li

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-07-18
Not valid after: 2025-10-16

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 5B:16:B2:53:BD:56:55:F4:4E:67:5C:32:68:20:BB:44:BA:E2:03:5D:AE:CD:67:B4:9A:8F:77:74:C0:15:68:A4
SHA1: 5A:D3:A9:CE:47:08:60:D7:ED:45:47:8A:AF:0F:1C:83:65:A1:29:F1

X509v3 extensions

subjectKeyIdentifier

E9:D9:5F:9A:3A:19:9B:A5:13:4C:55:44:CE:FB:12:64:98:68:5C:96

authorityKeyIdentifier

keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8

authorityInfoAccess

CA Issuers - URI:http://r10.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

crlDistributionPoints

Full Name:
URI:http://r10.c.lencr.org/26.crl

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Jul 18 06:06:35.864 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:5A:D6:F7:52:5C:91:80:C9:AD:50:E8:ED:
DA:AA:4C:7F:AF:6C:7D:56:7F:EF:FC:E7:DA:DF:CD:08:
20:19:86:76:02:20:3C:A1:18:64:F3:6A:BB:FB:58:E2:
C8:40:38:FA:53:D5:D5:F9:22:E4:02:FE:7D:D5:AC:E8:
A2:55:21:51:E2:A0
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Jul 18 06:06:37.851 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:47:E8:E5:08:3C:86:3E:FB:FD:25:1C:2B:
F3:03:DB:FF:F9:ED:FA:95:6B:32:DB:E4:EB:C2:83:36:
01:88:48:B5:02:21:00:B6:FE:29:A4:A7:88:1F:9A:83:
CB:99:4B:0C:20:02:A1:2E:12:F8:B4:F8:2C:11:80:C2:
0B:79:49:8B:84:48:21

SSL check results of cock.li