SSL check results of freenet.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for freenet.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 13 Jul 2020 13:50:54 +0000

No connection to the mailservers of freenet.de could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @freenet.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
emig.freenet.de
2001:748:100:40::8:117
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
2001:748:100:40::8:118
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
2001:748:100:40::8:116
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
2001:748:100:40::8:115
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
195.4.92.218
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
195.4.92.215
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
195.4.92.216
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
emig.freenet.de
195.4.92.217
Results incomplete
1
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have received emails from these servers with @freenet.de sender addresses. Test mail delivery

Host TLS Version & Cipher
unknown (IPv6:2001:748:100:40::2:3)
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
unknown (IPv6:2001:748:100:40::2:2)
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
mout2.freenet.de (IPv6:2001:748:100:40::2:4)
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
mout3.freenet.de (IPv6:2001:748:100:40::2:5)
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305

Certificates

No Certificates found

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.emig.freenet.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.emig.freenet.de
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid