SSL check results of giw.ch

NEW You can also bulk check multiple servers.

Discover if the mail servers for giw.ch can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sat, 27 Mar 2021 17:17:21 +0000

The mailservers of giw.ch can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @giw.ch addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
srv70.giw.ch
46.140.111.70
5
supported
*.giw.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
13 s
srv70.giw.ch
217.118.197.70
5
supported
*.giw.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
13 s
srv71.giw.ch
217.118.197.71
10
supported
*.giw.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
13 s
srv71.giw.ch
46.140.111.71
10
supported
*.giw.ch
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
13 s

Outgoing Mails

We have not received any emails from a @giw.ch address so far. Test mail delivery

Certificates

First seen at:

CN=*.giw.ch

Certificate chain
Subject
Common Name (CN)
  • *.giw.ch
Alternative Names
  • *.giw.ch
  • giw.ch
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Common Name (CN)
  • RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1
validity period
Not valid before
2020-10-03
Not valid after
2021-10-14
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
0C:6B:67:15:11:98:F9:A2:26:72:9A:2E:D7:FC:E0:B9:71:83:77:B2:42:3B:F5:72:79:2C:6B:1F:D9:D3:F6:E9
SHA1
FA:CB:04:7C:18:F7:E8:DD:81:FF:8F:71:0D:83:02:58:59:7C:A6:8E
X509v3 extensions
authorityKeyIdentifier
  • keyid:A4:8D:E5:BE:7C:79:E4:70:23:6D:2E:29:34:AD:23:58:DC:F5:31:7F
subjectKeyIdentifier
  • BA:29:92:63:21:A5:CA:44:66:2F:1C:8E:E7:2A:C6:D7:62:3A:ED:D2
crlDistributionPoints
  • Full Name:
  • URI:http://crl3.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crl
  • Full Name:
  • URI:http://crl4.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://ocsp.digicert.com
  • CA Issuers - URI:http://cacerts.digicert.com/RapidSSLTLSDVRSAMixedSHA2562020CA-1.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
  • E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
  • Timestamp : Oct 3 16:52:48.857 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C8:FC:B5:01:31:75:5E:C8:A5:D1:73:
  • 1F:4B:4A:1E:19:AA:7A:BF:8D:70:F9:1A:98:2D:9D:CC:
  • CC:AF:44:E9:C3:02:21:00:E8:16:70:11:1E:CC:C0:5E:
  • 4B:DC:C4:86:5A:C2:02:A9:13:CC:4E:4E:87:B8:0A:78:
  • BC:18:4A:A9:F4:60:A2:C7
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Oct 3 16:52:48.938 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:FA:29:46:B2:6D:5A:1A:BE:FC:69:D8:
  • 5E:D6:69:91:AA:2A:E8:13:59:3E:D7:5E:EC:AB:05:06:
  • 03:7A:80:71:0B:02:21:00:96:56:30:C9:20:18:26:FD:
  • F7:21:C4:B8:9C:AD:7F:13:E5:EF:01:C5:25:4C:F2:18:
  • 3F:00:09:EB:5C:4D:21:31