SSL-Tools

SSL check results of geodesys.com

NEW You can also bulk check multiple servers.

Discover if the mail servers for geodesys.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 07 Aug 2020 17:02:52 +0000

We can not guarantee a secure connection to the mailservers of geodesys.com!

Please contact the operator of geodesys.com and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/geodesys.com

Servers

Incoming Mails

These servers are responsible for incoming mails to @geodesys.com addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail1.geodesys.com
194.73.252.68
Results incomplete
1
supported
mail1.geodesys.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
relay1.bt.net
194.72.6.60
 20
supported
blp02029013
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • SSLv3
2 s
relay1.bt.net
217.35.209.165
 20
supported
blp02029006
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • SSLv3
2 s
relay2.bt.net
217.35.209.165
 20
supported
blp02029006
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • SSLv3
2 s
relay2.bt.net
194.72.6.60
 20
supported
blp02029012
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • SSLv3
2 s
mail2.geodesys.com
194.42.239.52
Results incomplete
25 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @geodesys.com address so far. Test mail delivery

Certificates

First seen at:

CN=mail1.geodesys.com,OU=IT,O=TIDE Services Ltd,L=Huntingdon,C=GB

Certificate chain
Subject
Country (C)
  • GB
Locality (L)
  • Huntingdon
Organization (O)
  • TIDE Services Ltd
Organizational Unit (OU)
  • IT
Common Name (CN)
  • mail1.geodesys.com
Alternative Names
  • mail1.geodesys.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust RSA CA 2018
validity period
Not valid before
2020-05-20
Not valid after
2021-08-19
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
D0:E3:57:36:54:AA:07:6D:0E:19:EF:34:7F:75:02:21:7E:B7:C8:F5:D1:ED:8F:F7:37:C9:EE:B4:0E:BB:BD:EF
SHA1
71:61:A3:65:B4:D1:1F:52:89:CE:61:E1:D3:36:CA:E4:A7:B2:92:4B
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5
subjectKeyIdentifier
  • 4D:D0:3C:50:72:1C:4B:76:78:4C:B6:57:AE:76:F1:FA:1A:75:DF:73
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : May 20 19:38:34.722 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:AC:22:68:A3:D7:BD:5F:9D:2C:DC:73:
  • 1F:55:CB:7E:51:D0:6B:E3:BB:4B:A2:B6:F0:8A:E5:CC:
  • 27:67:B5:03:2E:02:20:28:D2:EE:E6:8A:A7:2E:D5:83:
  • 4B:16:D2:6A:1E:4D:52:72:F7:C4:E9:79:02:AA:EE:08:
  • 54:F2:EF:11:02:8C:59
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : May 20 19:38:34.717 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:3C:A3:2A:8F:49:96:2D:62:87:E4:28:E7:
  • 48:91:0D:6E:AA:6E:E1:88:CD:BA:59:60:1E:D1:A8:99:
  • F4:5C:82:61:02:21:00:B4:C2:C4:03:51:6D:76:66:79:
  • 87:E6:0B:56:32:C9:C8:D9:5E:49:3A:63:62:31:19:05:
  • D0:69:EA:13:7F:22:25
First seen at:

emailAddress=root@blp02029013,CN=blp02029013,OU=SomeOrganizationalUnit,O=SomeOrganization,L=SomeCity,ST=SomeState,C=--

Certificate chain
  • blp02029013 (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha1WithRSAEncryption
    • Hostname Mismatch
    • Expired
    • Unknown Authority
Subject
Country (C)
  • --
State (ST)
  • SomeState
Locality (L)
  • SomeCity
Organization (O)
  • SomeOrganization
Organizational Unit (OU)
  • SomeOrganizationalUnit
Common Name (CN)
  • blp02029013
Email
  • root@blp02029013
Issuer

Certificate is self-signed.

validity period
Not valid before
2017-11-15
Not valid after
2018-11-15
Fingerprints
SHA256
2B:26:32:2F:2E:8C:44:26:ED:03:21:AA:8D:8E:4B:65:F4:E6:52:6D:29:E1:15:91:5D:FC:99:9C:3C:7C:05:A0
SHA1
A4:71:17:F6:71:FB:4F:41:E3:D3:21:EA:E7:B5:01:19:92:26:74:12
X509v3 extensions
subjectKeyIdentifier
  • 91:F3:0B:71:C2:3A:A5:FB:00:DF:68:A1:03:F0:2D:B9:E9:ED:BB:62
authorityKeyIdentifier
  • keyid:91:F3:0B:71:C2:3A:A5:FB:00:DF:68:A1:03:F0:2D:B9:E9:ED:BB:62
First seen at:

emailAddress=root@blp02029006,CN=blp02029006,OU=SomeOrganizationalUnit,O=SomeOrganization,L=SomeCity,ST=SomeState,C=--

Certificate chain
  • blp02029006 (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha1WithRSAEncryption
    • Hostname Mismatch
    • Expired
    • Unknown Authority
Subject
Country (C)
  • --
State (ST)
  • SomeState
Locality (L)
  • SomeCity
Organization (O)
  • SomeOrganization
Organizational Unit (OU)
  • SomeOrganizationalUnit
Common Name (CN)
  • blp02029006
Email
  • root@blp02029006
Issuer

Certificate is self-signed.

validity period
Not valid before
2017-11-15
Not valid after
2018-11-15
Fingerprints
SHA256
A7:D7:46:B8:8D:49:19:61:D7:55:2B:F5:58:A3:38:6A:CE:50:0B:C1:E4:A4:CA:C5:81:E0:E6:5B:D4:C1:2E:3F
SHA1
4F:62:34:16:BB:D2:D2:3C:BF:2B:01:75:79:C0:E9:81:FD:65:FB:F1
X509v3 extensions
subjectKeyIdentifier
  • 86:2B:91:25:73:A6:C6:8C:BA:0B:C1:C8:6D:51:B2:EC:48:5D:AA:C2
authorityKeyIdentifier
  • keyid:86:2B:91:25:73:A6:C6:8C:BA:0B:C1:C8:6D:51:B2:EC:48:5D:AA:C2
First seen at:

emailAddress=root@blp02029012,CN=blp02029012,OU=SomeOrganizationalUnit,O=SomeOrganization,L=SomeCity,ST=SomeState,C=--

Certificate chain
  • blp02029012 (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha1WithRSAEncryption
    • Hostname Mismatch
    • Expired
    • Unknown Authority
Subject
Country (C)
  • --
State (ST)
  • SomeState
Locality (L)
  • SomeCity
Organization (O)
  • SomeOrganization
Organizational Unit (OU)
  • SomeOrganizationalUnit
Common Name (CN)
  • blp02029012
Email
  • root@blp02029012
Issuer

Certificate is self-signed.

validity period
Not valid before
2017-11-15
Not valid after
2018-11-15
Fingerprints
SHA256
19:3B:85:43:67:55:E6:A0:F3:89:7A:F5:E6:48:77:5E:59:AE:3A:D6:26:1A:CF:EB:9E:2E:DD:37:25:8A:9B:F3
SHA1
61:B1:73:85:1A:1D:16:C1:65:6C:76:6B:54:0C:8D:60:04:8E:88:CF
X509v3 extensions
subjectKeyIdentifier
  • 67:53:D0:09:6C:09:16:8F:FE:EF:4E:2A:04:93:C7:83:F4:00:76:E8
authorityKeyIdentifier
  • keyid:67:53:D0:09:6C:09:16:8F:FE:EF:4E:2A:04:93:C7:83:F4:00:76:E8