SSL check results of cornelder.co.mz

NEW You can also bulk check multiple servers.

Discover if the mail servers for cornelder.co.mz can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 22 Feb 2021 07:25:06 +0000

We can not guarantee a secure connection to the mailservers of cornelder.co.mz!

Please contact the operator of cornelder.co.mz and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/cornelder.co.mz

Servers

Incoming Mails

These servers are responsible for incoming mails to @cornelder.co.mz addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
cloud8.spamtitan.com
13.58.8.62
5
supported
cloudk.spamtitan.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
cloud8.spamtitan.com
13.58.65.21
5
supported
cloudj.spamtitan.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
cloud8.spamtitan.com
52.15.128.102
5
supported
cloudl.spamtitan.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
cloud7.spamtitan.com
13.58.8.62
5
supported
cloudk.spamtitan.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
cloud7.spamtitan.com
52.15.128.102
5
supported
cloudl.spamtitan.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
cloud7.spamtitan.com
13.58.65.21
5
supported
cloudj.spamtitan.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
6 s
relay.cornelder.co.mz
41.191.72.74
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
2 s
mx01.cornelder.co.mz
41.76.149.190
Results incomplete
10
supported
not checked
DANE
missing
PFS
not checked
Heartbleed
not vulnerable
Weak ciphers
not checked
2 s
mx02.cornelder.co.mz
41.191.72.74
Results incomplete
20
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mx03.cornelder.co.mz
212.96.20.210
Results incomplete
30 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @cornelder.co.mz address so far. Test mail delivery

Certificates

First seen at:

CN=cloudk.spamtitan.com

Certificate chain
  • cloudk.spamtitan.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • cloudk.spamtitan.com
Alternative Names
  • cloudk.spamtitan.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-01-27
Not valid after
2021-04-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
CE:28:14:D0:14:38:BA:72:B0:DB:39:15:10:66:E5:CA:56:DE:EE:65:21:81:6E:97:92:C5:9F:4A:F9:61:3E:01
SHA1
15:6D:4E:A5:1C:B5:62:43:13:26:63:62:86:77:CE:D6:52:8D:20:49
X509v3 extensions
subjectKeyIdentifier
  • 54:02:54:4B:B0:8B:69:B9:61:C6:49:75:BA:81:0A:1D:67:B9:51:95
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D:
  • D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2
  • Timestamp : Jan 27 11:02:39.169 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:06:E1:60:56:D6:C4:B8:D4:2B:EE:C1:A1:
  • 26:5D:47:3A:C8:D4:C1:41:16:BE:06:78:27:11:73:8D:
  • 16:2A:12:50:02:21:00:AD:35:AC:F2:E1:99:90:FC:86:
  • 06:1F:F0:19:DD:47:BD:3E:F0:A5:01:62:39:2E:48:00:
  • 3E:EF:AB:A9:75:16:05
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Jan 27 11:02:39.218 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D7:22:2A:03:76:87:02:CC:61:2B:C3:
  • 88:AC:0D:11:CD:E9:73:28:1F:FF:6A:8D:A2:4B:1B:38:
  • 57:81:15:F1:93:02:21:00:EC:E2:5C:AE:78:52:5B:64:
  • DC:E9:F0:9C:F0:B4:93:75:0E:64:E0:C9:59:69:38:45:
  • 76:28:52:E3:58:3F:6C:F1
First seen at:

CN=cloudj.spamtitan.com

Certificate chain
  • cloudj.spamtitan.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • cloudj.spamtitan.com
Alternative Names
  • cloudj.spamtitan.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-01-27
Not valid after
2021-04-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
5A:13:E6:00:A3:81:31:F0:13:67:08:32:99:B4:5C:59:CE:C1:7C:33:C2:2A:F1:DA:9D:B8:40:BC:19:F5:01:73
SHA1
7A:BC:41:C4:DD:20:1A:DD:E1:96:68:59:78:94:53:B5:D3:75:ED:83
X509v3 extensions
subjectKeyIdentifier
  • E5:AC:98:9E:5B:03:37:06:AA:EE:3F:3D:3B:4A:4A:C2:33:7D:82:07
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Jan 27 11:01:46.170 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:36:FE:C4:01:47:BA:EF:1A:3A:12:E3:20:
  • E3:5E:AC:85:DD:D1:AF:D2:83:99:31:BD:ED:A9:A5:08:
  • 3D:70:54:20:02:21:00:D3:39:5C:A5:C9:F2:B0:04:A3:
  • 97:7F:6A:AE:5B:96:53:AC:99:69:B0:13:22:AE:7E:66:
  • ED:0C:53:56:AC:D8:E3
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Jan 27 11:01:46.187 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F1:7B:4B:DE:F1:1C:E3:24:E6:98:DC:
  • 86:BD:89:A6:CB:DC:4A:4B:E0:FB:7A:E3:11:35:50:B1:
  • A7:65:31:BB:3F:02:21:00:F7:DD:28:EE:2E:AD:F7:C8:
  • 21:33:31:4F:FE:E5:3E:55:58:58:45:61:4D:C3:EA:93:
  • 81:3A:67:0B:A3:9B:FC:EB
First seen at:

CN=cloudl.spamtitan.com

Certificate chain
  • cloudl.spamtitan.com
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch

      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DST Root CA X3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Common Name (CN)
  • cloudl.spamtitan.com
Alternative Names
  • cloudl.spamtitan.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2021-01-27
Not valid after
2021-04-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
0A:2C:D5:E5:9F:C4:83:B9:92:3A:9F:90:2A:57:CC:42:F7:98:8A:E1:A8:53:B9:5A:BD:BB:42:01:39:90:03:1B
SHA1
19:08:45:1B:5C:90:F8:79:3C:77:2A:39:6B:9A:E5:34:F0:05:44:1B
X509v3 extensions
subjectKeyIdentifier
  • A4:C9:45:CB:E6:CC:72:1B:7A:F7:D8:30:5A:C3:4B:F5:11:3E:48:ED
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : Jan 27 11:06:30.939 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:E0:3B:17:86:30:C0:0F:3F:05:D1:58:
  • 70:A3:D1:02:41:1A:4A:8E:7F:77:50:D6:11:1C:68:A0:
  • C8:D7:39:4C:46:02:20:5E:92:63:06:2B:42:6B:46:C8:
  • E0:44:64:8E:32:42:82:16:35:99:F5:8C:E1:CC:52:B0:
  • 5F:A6:E9:27:74:FA:3E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
  • 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
  • Timestamp : Jan 27 11:06:30.991 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6D:7E:F4:1D:0F:81:CD:9F:4E:DF:36:A0:
  • 10:02:40:5A:08:54:D8:BF:86:FE:76:3B:79:FC:D2:97:
  • EE:8B:58:D8:02:20:56:FF:F1:CD:9B:5B:B1:71:F0:D5:
  • B0:96:CA:EB:1F:3A:E3:66:02:9D:FF:9E:00:5C:E6:91:
  • FF:1C:8A:99:2F:38