SSL-Tools

SSL check results of gz-odw.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for gz-odw.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 28 May 2020 18:01:28 +0000

The mailservers of gz-odw.de can be reached through an encrypted connection.

However, we found problems that may affect the security.

Servers

Incoming Mails

These servers are responsible for incoming mails to @gz-odw.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
esec.gz-odw.de
95.131.98.198
 10
supported
esec
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
backupmail.gz-odw.de
78.94.75.86
 20
supported
esec
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @gz-odw.de address so far. Test mail delivery

Certificates

First seen at:

CN=esec,OU=IT,O=Gesundheitszentrum Odenwaldkreis GmbH,L=Erbach,ST=Hessen,C=DE

Certificate chain
  • esec
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority
      gz-odw-GZOEXC02-CA
Subject
Country (C)
  • DE
State (ST)
  • Hessen
Locality (L)
  • Erbach
Organization (O)
  • Gesundheitszentrum Odenwaldkreis GmbH
Organizational Unit (OU)
  • IT
Common Name (CN)
  • esec
Alternative Names
  • esec
  • esec.gz-odw.de
  • 10.2.2.251
Issuer
Domain Component (DC)
  • de
  • gz-odw
Common Name (CN)
  • gz-odw-GZOEXC02-CA
validity period
Not valid before
2018-06-19
Not valid after
2028-06-19
Fingerprints
SHA256
DB:D1:A4:87:70:9B:C9:9D:28:53:5F:BF:23:DC:74:F3:04:BA:52:2C:1E:97:FA:2A:4D:57:0A:EE:CA:A5:1F:D6
SHA1
90:5B:01:EB:9E:C1:7E:F5:D9:24:2F:DC:72:7A:9C:1D:7B:D6:68:9F
X509v3 extensions
subjectKeyIdentifier
  • 14:D1:D7:99:CA:45:F2:F1:AF:32:09:22:0D:D8:FE:2D:CD:5C:26:97
authorityKeyIdentifier
  • keyid:87:6B:FB:F4:35:32:6F:23:BA:62:EE:9D:17:1D:52:40:33:E2:A8:6E
crlDistributionPoints
  • Full Name:
  • URI:ldap:///CN=gz-odw-GZOEXC02-CA(2),CN=gzoexc02,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=gz-odw,DC=de?certificateRevocationList?base?objectClass=cRLDistributionPoint
authorityInfoAccess
  • CA Issuers - URI:ldap:///CN=gz-odw-GZOEXC02-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=gz-odw,DC=de?cACertificate?base?objectClass=certificationAuthority