SSL-Tools

SSL check results of dangr.zone

NEW You can also bulk check multiple servers.

Discover if the mail servers for dangr.zone can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 05 Dec 2024 01:31:42 +0000

We can not guarantee a secure connection to the mailservers of dangr.zone!

Please contact the operator of dangr.zone and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/dangr.zone

Servers

Incoming Mails

These servers are responsible for incoming mails to @dangr.zone addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
puffy.shedim.de
2a01:4f8:1c0c:4e6e::2
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
puffy.shedim.de
195.201.32.161
 10
supported
shedim.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @dangr.zone address so far. Test mail delivery

Certificates

First seen at:

CN=shedim.de

Certificate chain
  • shedim.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • shedim.de
Alternative Names
  • barter-town.dangr.zone
  • dangr.zone
  • eremiten-wg.de
  • highway.dangr.zone
  • mail.shedim.de
  • paula.eremiten-wg.de
  • puffy.shedim.de
  • shedim.de
  • uriel.eremiten-wg.de
  • www.eremiten-wg.de
  • www.shedim.de
  • xmpp-upload.dangr.zone
  • xn--wp9h.dangr.zone
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-11-08
Not valid after
2025-02-06
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
55:B6:14:0E:EF:9B:4D:42:39:FA:4F:92:68:E1:84:4C:04:C2:43:79:6E:1E:5E:20:8C:18:13:38:9E:CA:B0:11
SHA1
CF:5E:34:35:4E:9F:F2:11:04:28:EE:4C:2B:8C:35:A1:E4:69:2A:CD
X509v3 extensions
subjectKeyIdentifier
  • 5F:51:15:37:76:6D:86:F0:7B:C3:C0:8B:FE:DD:93:96:F5:56:58:9C
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
  • D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
  • Timestamp : Nov 9 00:31:06.868 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:43:9A:DF:2D:4A:DE:59:B3:DB:6C:61:55:
  • D0:9A:AD:A8:A1:C9:5D:44:D3:6D:45:34:ED:3B:55:91:
  • 69:82:74:A9:02:21:00:D9:5C:CA:C9:46:0E:27:F6:89:
  • 2D:EE:AC:93:7A:41:87:1D:61:79:CB:15:14:22:3F:88:
  • 34:8A:85:59:06:3F:B5
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
  • D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
  • Timestamp : Nov 9 00:31:06.864 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6B:1F:91:93:93:15:5D:2C:DF:E5:A8:68:
  • A6:20:04:53:A1:1C:F6:D4:BD:C4:E4:89:B7:E5:F5:E2:
  • 2F:CE:27:E0:02:20:6A:1E:22:16:60:DB:7C:2C:B0:5C:
  • 4E:6F:C9:6B:77:45:E2:51:74:E4:37:4D:4C:B4:0E:9A:
  • E2:AE:59:B5:E0:11