SSL-Tools

SSL check results of het.cz

NEW You can also bulk check multiple servers.

Discover if the mail servers for het.cz can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 19 Feb 2025 01:40:30 +0000

We can not guarantee a secure connection to the mailservers of het.cz!

Please contact the operator of het.cz and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/het.cz

Servers

Incoming Mails

These servers are responsible for incoming mails to @het.cz addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.het.cz
85.207.216.46
 10
supported
remote.het.cz
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
1 s
remote.diestra.cz
90.179.114.44
Results incomplete
20 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @het.cz address so far. Test mail delivery

Certificates

First seen at:

CN=remote.het.cz,OU=HET spol. s r.o.,O=HET spol. s r.o.,L=Ohníč\ ,ST=CZ,C=CZ

Certificate chain
  • remote.het.cz
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority
      HET-RootCA
Subject
Country (C)
  • CZ
State (ST)
  • CZ
Locality (L)
  • Ohníč
Organization (O)
  • HET spol. s r.o.
Organizational Unit (OU)
  • HET spol. s r.o.
Common Name (CN)
  • remote.het.cz
Alternative Names
  • remote.het.cz
  • exchange.het.local
  • morfeus
  • morfeus.het.local
  • het.cz
  • autodiscover.het.cz
  • autodiscover.het.local
  • exchange
  • legacy.het.cz
  • legacy.het.local
Issuer
Domain Component (DC)
  • local
  • het
Common Name (CN)
  • HET-RootCA
validity period
Not valid before
2025-01-02
Not valid after
2026-01-07
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
E8:F0:30:34:6F:34:10:E0:90:3D:EC:87:E0:9B:25:2E:CB:7B:3A:19:61:A0:B8:05:05:C4:7A:F8:4D:EF:15:E7
SHA1
76:2E:86:9C:5E:73:54:96:C3:BE:0D:D6:6D:D5:DF:D4:EC:4A:71:8B
X509v3 extensions
subjectKeyIdentifier
  • 25:49:AD:8E:CD:BF:90:B1:CD:93:BC:27:EF:E5:40:F0:F9:60:9F:29
authorityKeyIdentifier
  • keyid:87:EC:79:37:85:E7:2F:98:BD:15:0A:B9:8F:2A:D4:25:6E:2B:6B:7C
crlDistributionPoints
  • Full Name:
  • URI:ldap:///CN=HET-RootCA(2),CN=Merkur,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=het,DC=local?certificateRevocationList?base?objectClass=cRLDistributionPoint
authorityInfoAccess
  • CA Issuers - URI:ldap:///CN=HET-RootCA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=het,DC=local?cACertificate?base?objectClass=certificationAuthority
1_3_6_1_4_1_311_20_2
  • ...W.e.b.S.e.r.v.e.r