SSL check results of grellmann.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for grellmann.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sun, 12 Jan 2020 09:19:18 +0000

The mailservers of grellmann.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @grellmann.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
grellmann.net
89.182.12.200
10
supported
grellmann.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s

Outgoing Mails

We have received emails from these servers with @grellmann.net sender addresses. Test mail delivery

Host TLS Version & Cipher
relay06.alfahosting-server.de (109.237.142.242)
TLSv1.2 AECDH-AES256-SHA
relay08.alfahosting-server.de (109.237.142.245)
TLSv1.2 AECDH-AES256-SHA
relay07.alfahosting-server.de (109.237.142.243)
TLSv1.2 AECDH-AES256-SHA
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::3)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::9)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::6)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::12)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::10)
Insecure - not encrypted!
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::8)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::1)
Insecure - not encrypted!
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::11)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::4)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::2)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::5)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
mo6-p05-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5305::7)
TLSv1.3 TLS_AES_256_GCM_SHA384
a89-182-51-48.net-htp.de (89.182.51.48)
TLSv1.2 AECDH-AES256-SHA
a89-182-151-94.net-htp.de (89.182.151.94)
TLSv1.2 AECDH-AES256-SHA
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::8)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::6)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::10)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p01-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5301::8)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p01-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5301::3)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p01-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5301::11)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p01-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5301::5)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::9)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::5)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::1)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::2)
TLSv1.3 TLS_AES_256_GCM_SHA384
mo6-p00-ob.smtp.rzone.de (IPv6:2a01:238:20a:202:5300::4)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=grellmann.net

Certificate chain
Subject
Common Name (CN)
  • grellmann.net
Alternative Names
  • grellmann.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2019-11-20
Not valid after
2020-02-18
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
72:7B:09:B4:54:D7:DA:17:30:4C:28:81:E4:B6:64:B0:9A:B6:59:CA:C7:B0:8B:B9:A0:76:3D:F7:AE:A6:93:AC
SHA1
52:F8:33:FD:F9:0B:E2:A2:33:4C:E9:4A:BB:25:E3:9B:F2:4F:AA:56
X509v3 extensions
subjectKeyIdentifier
  • 1E:D1:14:90:56:86:CA:D1:B5:9B:8A:3F:D5:CB:A6:43:51:E9:EA:F2
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5E:A7:73:F9:DF:56:C0:E7:B5:36:48:7D:D0:49:E0:32:
  • 7A:91:9A:0C:84:A1:12:12:84:18:75:96:81:71:45:58
  • Timestamp : Nov 20 05:59:07.018 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:CD:FF:9F:8E:1B:03:40:2D:27:9A:42:
  • B1:D2:96:84:44:29:FD:EB:6B:D2:4A:5D:AB:56:7A:DB:
  • DF:D2:97:4F:84:02:20:4E:E2:07:F1:62:DE:57:82:8C:
  • 34:47:EB:5C:0B:27:70:4B:5A:E9:A9:90:21:ED:67:77:
  • 91:93:20:D1:BE:39:5E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B2:1E:05:CC:8B:A2:CD:8A:20:4E:87:66:F9:2B:B9:8A:
  • 25:20:67:6B:DA:FA:70:E7:B2:49:53:2D:EF:8B:90:5E
  • Timestamp : Nov 20 05:59:07.081 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:C4:4D:25:34:BA:1E:F7:2F:C2:5C:8E:
  • 9A:DE:4E:A6:D0:44:5E:09:F0:22:F7:FF:63:01:9E:3D:
  • 7E:77:FF:97:32:02:20:75:EE:A7:0F:1D:CB:A7:F0:FD:
  • 2C:BC:F2:C5:56:C3:C4:43:9F:8E:4F:C1:93:F0:74:47:
  • 71:F7:4B:F7:7B:E3:43