SSL check results of homeweb.ru

NEW You can also bulk check multiple servers.

Discover if the mail servers for homeweb.ru can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sun, 09 Aug 2020 14:39:03 +0000

The mailservers of homeweb.ru can be reached through an encrypted connection.

However, we found problems that may affect the security.

Servers

Incoming Mails

These servers are responsible for incoming mails to @homeweb.ru addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx1.homeweb.ru
2a02:bc8:101:5::20
10
supported
mx1.homeweb.ru
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
4 s
mx1.homeweb.ru
81.26.148.77
10
supported
mx1.homeweb.ru
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
4 s
aspmx.l.google.com
2a00:1450:4013:c08::1a
61
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
aspmx.l.google.com
173.194.69.26
61
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s
alt2.aspmx.l.google.com
2404:6800:4008:c00::1b
65
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
15 s
alt2.aspmx.l.google.com
108.177.97.26
65
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
14 s
alt1.aspmx.l.google.com
2404:6800:4003:c06::1a
65
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s
alt1.aspmx.l.google.com
142.250.4.26
65
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
17 s
aspmx3.googlemail.com
2404:6800:4008:c00::1b
70
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
15 s
aspmx3.googlemail.com
108.177.97.26
70
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
14 s
aspmx2.googlemail.com
2404:6800:4003:c06::1b
70
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s
aspmx2.googlemail.com
142.250.4.26
70
supported
mx.google.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s

Outgoing Mails

We have not received any emails from a @homeweb.ru address so far. Test mail delivery

Certificates

First seen at:

CN=mx.google.com,O=Google LLC,L=Mountain View,ST=California,C=US

Certificate chain
  • mx.google.com
    • remaining
    • 256 bit
    • sha256WithRSAEncryption

      • GTS CA 1O1
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • GlobalSign (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha1WithRSAEncryption

Subject
Country (C)
  • US
State (ST)
  • California
Locality (L)
  • Mountain View
Organization (O)
  • Google LLC
Common Name (CN)
  • mx.google.com
Alternative Names
  • mx.google.com
  • alt1.aspmx.l.google.com
  • alt1.gmail-smtp-in.l.google.com
  • alt1.gmr-smtp-in.l.google.com
  • alt2.aspmx.l.google.com
  • alt2.gmail-smtp-in.l.google.com
  • alt2.gmr-smtp-in.l.google.com
  • alt3.aspmx.l.google.com
  • alt3.gmail-smtp-in.l.google.com
  • alt3.gmr-smtp-in.l.google.com
  • alt4.aspmx.l.google.com
  • alt4.gmail-smtp-in.l.google.com
  • alt4.gmr-smtp-in.l.google.com
  • aspmx.l.google.com
  • aspmx2.googlemail.com
  • aspmx3.googlemail.com
  • aspmx4.googlemail.com
  • aspmx5.googlemail.com
  • gmail-smtp-in.l.google.com
  • gmr-mx.google.com
  • gmr-smtp-in.l.google.com
  • mx1.smtp.goog
  • mx2.smtp.goog
  • mx3.smtp.goog
  • mx4.smtp.goog
Issuer
Country (C)
  • US
Organization (O)
  • Google Trust Services
Common Name (CN)
  • GTS CA 1O1
validity period
Not valid before
2020-07-15
Not valid after
2020-10-07
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
Fingerprints
SHA256
06:BE:8A:7F:E4:73:6A:AA:B3:2D:5D:D2:1D:E4:D7:87:4B:34:4D:DC:6C:01:8C:5C:E9:F9:1A:29:22:DE:36:06
SHA1
98:15:13:55:A1:1F:39:58:3D:35:05:17:F7:B6:7D:2A:27:CB:60:60
X509v3 extensions
subjectKeyIdentifier
  • 31:51:7F:9F:E7:A8:80:23:7E:25:E5:5E:5E:1A:4D:26:D3:28:47:56
authorityKeyIdentifier
  • keyid:98:D1:F8:6E:10:EB:CF:9B:EC:60:9F:18:90:1B:A0:EB:7D:09:FD:2B
authorityInfoAccess
  • OCSP - URI:http://ocsp.pki.goog/gts1o1core
  • CA Issuers - URI:http://pki.goog/gsr2/GTS1O1.crt
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • Policy: 1.3.6.1.4.1.11129.2.5.3
crlDistributionPoints
  • Full Name:
  • URI:http://crl.pki.goog/GTS1O1core.crl
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : C6:52:A0:EC:48:CE:B3:FC:AB:17:09:92:C4:3A:87:41:
  • 33:09:E8:00:65:A2:62:52:40:1B:A3:36:2A:17:C5:65
  • Timestamp : Jul 15 09:33:09.310 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:BE:AB:E7:40:83:F5:11:AA:23:E7:DF:
  • 01:F7:FC:5D:8C:EE:23:DB:ED:68:28:62:76:29:29:66:
  • 1B:12:41:FD:AD:02:21:00:96:B4:B5:C6:47:1F:6E:EC:
  • 1B:38:97:F5:FB:0B:6E:1B:AC:14:97:20:EE:AF:BF:0E:
  • 0D:E4:86:A7:A8:60:FF:37
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 07:B7:5C:1B:E5:7D:68:FF:F1:B0:C6:1D:23:15:C7:BA:
  • E6:57:7C:57:94:B7:6A:EE:BC:61:3A:1A:69:D3:A2:1C
  • Timestamp : Jul 15 09:33:09.799 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:42:54:87:51:73:87:DF:D0:F0:1B:7B:65:
  • 34:04:1C:25:65:0C:88:37:22:26:20:39:06:F9:44:D9:
  • C9:6B:78:AE:02:21:00:C2:8F:B4:D5:8C:64:93:C0:63:
  • 56:FF:AA:23:31:88:FA:E2:D4:15:2E:3E:1B:04:2D:AE:
  • 70:7F:72:88:4C:8D:27
First seen at:

CN=mx1.homeweb.ru

Certificate chain
Subject
Common Name (CN)
  • mx1.homeweb.ru
Alternative Names
  • mx1.homeweb.ru
  • mx2.homeweb.ru
  • mx3.homeweb.ru
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-06-20
Not valid after
2020-09-18
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
2E:6A:06:27:C7:50:7E:44:48:30:92:6E:09:C8:38:DF:B6:10:85:67:37:EF:2F:25:8E:A1:8C:52:1F:03:63:C2
SHA1
48:CC:C9:1D:E9:FA:03:F4:29:04:C8:6B:28:C0:8F:45:A9:7A:E6:19
X509v3 extensions
subjectKeyIdentifier
  • AE:68:51:A0:78:5F:22:7A:B6:26:CE:15:66:95:79:55:81:3D:B9:60
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : E7:12:F2:B0:37:7E:1A:62:FB:8E:C9:0C:61:84:F1:EA:
  • 7B:37:CB:56:1D:11:26:5B:F3:E0:F3:4B:F2:41:54:6E
  • Timestamp : Jun 20 20:17:49.028 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:7D:61:BE:ED:8D:60:6F:03:CF:50:DC:B2:
  • 76:7E:0F:BD:90:6F:5E:71:B4:24:5B:F0:2C:AA:59:4C:
  • 4B:D6:61:44:02:20:07:57:5F:F5:A4:8C:6D:BD:D3:C1:
  • 86:03:7C:40:05:BB:1E:F0:08:03:21:B4:C6:75:EF:67:
  • EF:EC:8C:96:D2:A9
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 07:B7:5C:1B:E5:7D:68:FF:F1:B0:C6:1D:23:15:C7:BA:
  • E6:57:7C:57:94:B7:6A:EE:BC:61:3A:1A:69:D3:A2:1C
  • Timestamp : Jun 20 20:17:49.038 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F3:9F:60:B9:64:C7:B7:39:C8:57:44:
  • 23:6E:74:EF:7A:E0:59:29:A0:36:5D:E9:68:24:9B:FC:
  • 0F:37:DF:33:34:02:20:73:EC:31:45:E1:91:2B:0D:CB:
  • 06:E7:B3:03:63:C8:B2:0E:BD:E2:62:D6:A8:2D:7D:B6:
  • 0E:70:DB:D9:D9:6B:64