Discover if the mail servers for comcast.net can be reached through a secure connection.
To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.
Report created Fri, 26 Jan 2024 00:02:04 +0000
These servers are responsible for incoming mails to @comcast.net addresses.
Hostname / IP address | Priority | STARTTLS | Certificates | Protocol | ||
---|---|---|---|---|---|---|
mx1.mxge.comcast.net
2001:558:fd02:243f::2
Results incomplete
|
5 | not checked |
|
1 s
|
||
mx1.mxge.comcast.net
96.102.18.148
Results incomplete
|
5 |
supported
|
not checked |
|
2 s
|
|
mx2.mxge.comcast.net
2001:558:fd00:4f::5
Results incomplete
|
5 | not checked |
|
1 s
|
||
mx2.mxge.comcast.net
96.102.18.149
Results incomplete
|
5 |
supported
|
not checked |
|
2 s
|
|
mx2a1.comcast.net
2001:558:fd01:2bad::4
Results incomplete
|
50 | not checked |
|
11 s
|
||
mx2a1.comcast.net
96.103.145.164
Results incomplete
|
50 |
supported
|
not checked |
|
2 s
|
|
mx1c1.comcast.net
2001:558:fd00:4f::4
Results incomplete
|
50 | not checked |
|
1 s
|
||
mx1c1.comcast.net
96.102.18.148
Results incomplete
|
50 |
supported
|
not checked |
|
2 s
|
|
mx2c1.comcast.net
2001:558:fd00:4f::5
Results incomplete
|
50 | not checked |
|
1 s
|
||
mx2c1.comcast.net
96.102.18.149
Results incomplete
|
50 |
supported
|
not checked |
|
2 s
|
|
mx1h1.comcast.net
2001:558:fd02:243f::2
Results incomplete
|
50 | not checked |
|
1 s
|
||
mx1h1.comcast.net
96.102.157.178
Results incomplete
|
50 |
supported
|
not checked |
|
3 s
|
|
mx2h1.comcast.net
2001:558:fd02:243f::3
Results incomplete
|
50 | not checked |
|
1 s
|
||
mx2h1.comcast.net
96.102.157.179
Results incomplete
|
50 |
supported
|
not checked |
|
3 s
|
|
mx1a1.comcast.net
2001:558:fd01:2bad::5
Results incomplete
|
50 | not checked |
|
11 s
|
||
mx1a1.comcast.net
96.103.145.165
Results incomplete
|
50 |
supported
|
not checked |
|
2 s
|
We have received emails from these servers with @comcast.net sender addresses. Test mail delivery
Host | TLS Version & Cipher | |
---|---|---|
resqmta-ch2-02v.sys.comcast.net (69.252.207.34) |
TLSv1.2
ECDHE-RSA-AES256-GCM-SHA384
|
|
resqmta-ch2-10v.sys.comcast.net (IPv6:2001:558:fe21:29:69:252:207:42) |
TLSv1.2
ECDHE-RSA-AES256-GCM-SHA384
|
No Certificates found
DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.
Name | Options | DNSSEC | Matches |
---|---|---|---|
_25._tcp.mx2a1.comcast.net |
|
valid
|
— |
_25._tcp.mx1c1.comcast.net |
|
valid
|
— |
_25._tcp.mx1.mxge.comcast.net |
|
valid
|
— |
_25._tcp.mx2c1.comcast.net |
|
valid
|
— |
_25._tcp.mx1h1.comcast.net |
|
valid
|
— |
_25._tcp.mx2h1.comcast.net |
|
valid
|
— |
_25._tcp.mx1a1.comcast.net |
|
valid
|
— |
_25._tcp.mx2.mxge.comcast.net |
|
valid
|
— |