excelsior.ru - TLS / STARTTLS Test

Discover if the mail servers for excelsior.ru can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 11 Nov 2023 18:59:08 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of excelsior.ru can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @excelsior.ru addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
aspmx.l.google.com 2a00:1450:400c:c00::1b Results incomplete	1	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
aspmx.l.google.com 64.233.167.27 Results incomplete	1	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
alt1.aspmx.l.google.com 2a00:1450:4013:c16::1b Results incomplete	5	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
alt1.aspmx.l.google.com 142.250.153.27 Results incomplete	5	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
alt2.aspmx.l.google.com 2a00:1450:4025:c03::1b Results incomplete	5	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
alt2.aspmx.l.google.com 142.251.9.26 Results incomplete	5	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
mx1.masterhost.ru 90.156.153.248	10	supported	mx1.masterhost.ru	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-11-11 13 s
aspmx2.googlemail.com 2a00:1450:4013:c16::1b Results incomplete	10	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
aspmx2.googlemail.com 142.250.153.27 Results incomplete	10	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
aspmx3.googlemail.com 2a00:1450:4025:c03::1b Results incomplete	10	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s
aspmx3.googlemail.com 142.251.9.26 Results incomplete	10	supported	not checked	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-11-11 1 s

Outgoing Mails

We have not received any emails from a @excelsior.ru address so far. Test mail delivery

Certificates

First seen at: 2023-11-11

CN=mx1.masterhost.ru

Certificate chain

mx1.masterhost.ru
- 2024-09-21 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mx1.masterhost.ru

Alternative Names

mx1.masterhost.ru

Issuer

Country (C)

Organization (O)

GlobalSign nv-sa

Common Name (CN)

AlphaSSL CA - SHA256 - G4

validity period

Not valid before: 2023-08-21
Not valid after: 2024-09-21

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: F0:85:53:4B:3D:0A:45:81:E5:BB:16:F5:F3:D9:C8:C2:01:6D:D5:E5:9F:07:16:83:44:B4:AD:CA:F7:43:8D:E6
SHA1: 00:B0:D6:A3:70:E1:21:63:CD:B4:5C:D8:EB:84:0F:FA:21:2F:1C:39

X509v3 extensions

authorityInfoAccess

CA Issuers - URI:http://secure.globalsign.com/cacert/alphasslcasha256g4.crt
OCSP - URI:http://ocsp.globalsign.com/alphasslcasha256g4

certificatePolicies

Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.4146.10.1.3
CPS: https://www.globalsign.com/repository/

crlDistributionPoints

Full Name:
URI:http://crl.globalsign.com/alphasslcasha256g4.crl

authorityKeyIdentifier

keyid:4F:CB:AC:A8:C2:EF:AB:DD:83:6F:6B:BF:CE:98:3D:5C:58:25:76:15

subjectKeyIdentifier

73:2F:21:76:0E:CF:36:3D:60:D4:24:17:ED:05:6E:E7:BE:9E:B1:16

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 21 09:57:45.537 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:E3:88:D3:A0:79:A4:1E:6E:47:5F:2F:
FE:36:0D:49:5B:76:5E:CC:1E:A4:56:D3:A5:B8:22:E3:
F2:24:6A:A0:33:02:20:49:22:D9:85:D4:EB:8B:B0:C8:
DF:B5:D5:DB:04:DE:7F:40:F9:0B:4D:18:9F:CD:FB:98:
9E:D9:2A:93:3A:9A:94
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 21 09:57:45.943 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:0B:B3:5F:EA:FE:3F:BE:3B:30:39:02:CA:
7C:B9:2A:E6:64:C0:24:CD:21:21:5A:5F:C2:A7:A5:AD:
BB:7C:E4:05:02:20:61:60:AF:45:43:11:B6:CC:B2:84:
E6:55:4A:E2:03:A6:36:B6:4A:2A:69:F7:AD:57:3A:DF:
4C:E5:12:E8:A9:82
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Aug 21 09:57:45.182 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:01:11:D6:4A:CB:35:30:BF:88:7B:85:62:
E1:92:4F:FD:39:BB:C3:DC:13:30:53:8A:FF:00:3D:E3:
E0:E7:C1:51:02:21:00:DD:BE:4E:62:C2:6D:63:90:1C:
83:B7:A1:A2:C4:F6:5A:10:C8:71:4A:9B:AC:08:BE:53:
32:5A:80:3C:04:5E:D8

SSL check results of excelsior.ru