SSL check results of dol.sk

NEW You can also bulk check multiple servers.

Discover if the mail servers for dol.sk can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 13 Aug 2019 08:22:20 +0000

We can not guarantee a secure connection to the mailservers of dol.sk!

Please contact the operator of dol.sk and ask him or her to solve this problem. This result stays accessible under the following address:

https://ssl-tools.net/mailservers/dol.sk

Servers

Incoming Mails

These servers are responsible for incoming mails to @dol.sk addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mailgw.dol.sk
2a0c:2541:249:200::25
5
supported
*.dol.sk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mailgw.dol.sk
2a0c:2541:249:200::26
5
supported
*.dol.sk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
mailgw.dol.sk
85.159.106.26
5
supported
*.dol.sk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
7 s
mailgw.dol.sk
85.159.106.25
5
supported
*.dol.sk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
jarka.dol.sk
2a0c:2541:249:200::5
10
supported
dol.sk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
jarka.dol.sk
85.159.106.5
10
supported
dol.sk
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
8 s
vhost1.dol.sk
2a0c:2541:249:201::132
Results incomplete
20
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
4 s
vhost1.dol.sk
85.159.104.132
Results incomplete
20
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
4 s

Outgoing Mails

We have not received any emails from a @dol.sk address so far. Test mail delivery

Certificates

First seen at:

CN=*.dol.sk,O=dol.sk,OU=Proxmox Mail Gateway

Certificate chain
  • *.dol.sk (Certificate is self-signed.)
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Unknown Authority

Subject
Organizational Unit (OU)
  • Proxmox Mail Gateway
Organization (O)
  • dol.sk
Common Name (CN)
  • *.dol.sk
Issuer

Certificate is self-signed.

validity period
Not valid before
2019-05-03
Not valid after
2029-04-30
Fingerprints
SHA256
17:5D:18:2A:C7:12:38:2D:94:93:B8:C2:11:67:FA:54:1A:36:0F:8A:FD:C1:79:77:82:9C:15:0D:18:66:E3:F3
SHA1
98:33:D6:05:5D:63:93:33:D7:C9:62:4A:70:43:A8:13:0B:12:7B:C8
First seen at:

CN=*.dol.sk,O=dol.sk,OU=Proxmox Mail Gateway

Certificate chain
  • *.dol.sk (Certificate is self-signed.)
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Unknown Authority

Subject
Organizational Unit (OU)
  • Proxmox Mail Gateway
Organization (O)
  • dol.sk
Common Name (CN)
  • *.dol.sk
Issuer

Certificate is self-signed.

validity period
Not valid before
2019-05-22
Not valid after
2029-05-19
Fingerprints
SHA256
75:14:38:81:4B:B8:BD:14:4E:BF:27:EF:AB:06:FD:E8:B6:61:C6:57:57:4B:F0:24:97:8C:99:56:11:D4:F5:FF
SHA1
11:B7:00:DC:E1:4F:AF:D9:38:F8:D3:CE:E4:09:05:AF:3E:16:AD:F0
First seen at:

CN=dol.sk

Certificate chain
  • dol.sk
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Expired

Subject
Common Name (CN)
  • dol.sk
Alternative Names
  • dol.sk
  • secure.dol.sk
  • webmail.dol.sk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2018-01-15
Not valid after
2018-04-15
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
92:26:9D:AA:A5:42:7D:62:EC:B0:C1:85:72:33:BD:65:8D:B0:F7:E4:56:63:4E:AB:89:9F:EE:23:86:61:B4:F1
SHA1
95:29:2D:78:5C:B9:5E:71:9F:BF:0B:30:85:44:90:2F:BD:7E:0F:2A
X509v3 extensions
subjectKeyIdentifier
  • 47:08:3D:5D:46:6D:BE:0C:11:65:E5:08:E5:74:E5:6A:32:50:23:2A
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
  • User Notice:
  • Explicit Text: This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/