SSL-Tools

SSL check results of erka.org

NEW You can also bulk check multiple servers.

Discover if the mail servers for erka.org can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 05 Mar 2021 08:08:28 +0000

We can not guarantee a secure connection to the mailservers of erka.org!

Please contact the operator of erka.org and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/erka.org

Servers

Incoming Mails

These servers are responsible for incoming mails to @erka.org addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.erka.org
80.151.200.218
 10
supported
remote.erka.org
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.0
  • SSLv3
2 s
backup-mx.sasg.de
2a00:1100:ff:25::31
Results incomplete
20
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
backup-mx.sasg.de
95.142.67.31
Results incomplete
20
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @erka.org address so far. Test mail delivery

Certificates

First seen at:

CN=remote.erka.org

Certificate chain
  • remote.erka.org
    • remaining
    • 2048 bit
    • sha1WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority
      erka-SBS2011-CA
Subject
Common Name (CN)
  • remote.erka.org
Alternative Names
  • erka.org
  • remote.erka.org
  • SBS2011.erka.local
Issuer
Common Name (CN)
  • erka-SBS2011-CA
validity period
Not valid before
2019-04-02
Not valid after
2021-04-01
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
B8:BB:A8:20:3A:2F:52:67:90:DB:99:51:8F:DF:41:E6:85:D2:17:89:8B:7A:6D:8F:18:33:F7:4E:01:62:15:C6
SHA1
F7:38:1E:C4:F5:90:AA:A4:B2:04:83:34:08:E8:30:96:AC:26:DB:46
X509v3 extensions
subjectKeyIdentifier
  • 2F:78:54:99:47:00:35:B1:53:86:4D:F9:2E:40:45:E9:6A:AF:EF:39
authorityKeyIdentifier
  • keyid:6D:DC:78:F4:39:E4:72:BA:F3:B7:6F:83:7D:DB:EF:8C:17:DE:B8:46
crlDistributionPoints
  • Full Name:
  • URI:ldap:///CN=erka-SBS2011-CA(1),CN=SBS2011,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=erka,DC=local?certificateRevocationList?base?objectClass=cRLDistributionPoint
authorityInfoAccess
  • CA Issuers - URI:ldap:///CN=erka-SBS2011-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=erka,DC=local?cACertificate?base?objectClass=certificationAuthority
1_3_6_1_4_1_311_20_2
  • ...W.e.b.S.e.r.v.e.r