ict-ebusiness.com - TLS / STARTTLS Test

Discover if the mail servers for ict-ebusiness.com can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 20 Jan 2025 15:25:40 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Valid

The mailservers of ict-ebusiness.com can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @ict-ebusiness.com addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx01-ad9c46d1.ict-ebusiness.com 2001:41d0:701:1100::1ac6	10	supported	mx01-ad9c46d1.ict-ebusiness.com	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-01-20 1 s
mx01-ad9c46d1.ict-ebusiness.com 51.195.116.179	10	supported	mx01-ad9c46d1.ict-ebusiness.com	DANE valid PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-01-20 1 s

Outgoing Mails

We have received emails from these servers with @ict-ebusiness.com sender addresses. Test mail delivery

Host	TLS Version & Cipher
mx01-ad9c46d1.ict-ebusiness.com (51.195.116.179)	TLSv1.3 TLS_AES_256_GCM_SHA384	2021-06-06

Certificates

First seen at: 2025-01-20

CN=mx01-ad9c46d1.ict-ebusiness.com

Certificate chain

mx01-ad9c46d1.ict-ebusiness.com
- 2025-04-13 remaining
- 384 bit
- ecdsa-with-SHA384

Subject

Common Name (CN)

mx01-ad9c46d1.ict-ebusiness.com

Alternative Names

imap.ict-ebusiness.com
mx01-ad9c46d1.ict-ebusiness.com
smtp.ict-ebusiness.com

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-01-13
Not valid after: 2025-04-13

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 7F:9F:C1:90:CF:84:BA:A4:25:9E:A7:84:82:07:B5:00:E1:8E:4B:6B:79:EA:2B:53:7D:51:F3:50:4F:C1:35:4B
SHA1: 15:8A:13:BC:CF:E8:D3:7B:69:A4:F3:04:B8:56:41:87:05:BA:10:05

X509v3 extensions

subjectKeyIdentifier

29:4D:D0:B2:AA:E4:DE:1C:8E:3F:71:BF:0E:EC:EA:E5:22:4D:31:DE

authorityKeyIdentifier

keyid:93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2

authorityInfoAccess

OCSP - URI:http://e6.o.lencr.org
CA Issuers - URI:http://e6.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Jan 13 16:32:43.696 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:BE:50:D1:C2:BC:67:A6:9B:9A:8B:0C:
50:31:BE:6A:7D:3D:01:BA:DD:F6:BA:28:C0:10:50:6F:
D4:D4:99:FE:59:02:20:2C:DF:77:5A:5D:51:FD:7A:C3:
BC:A3:9C:9E:CE:37:A6:64:D1:3F:B7:F4:0F:4F:C0:BB:
69:D7:D9:2B:9E:BB:3F
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
Timestamp : Jan 13 16:32:44.001 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:D0:96:EC:63:D0:38:CF:D7:12:F9:8A:
C9:BD:10:D9:6E:CC:20:4A:6A:9C:B9:DE:0C:15:45:D6:
60:D2:CD:ED:CA:02:21:00:A0:06:7F:4F:33:59:63:5B:
A6:B6:5C:79:C0:A5:6E:30:A1:A9:F2:78:F4:91:2F:E0:
4E:6F:59:9C:89:91:85:F8

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mx01-ad9c46d1.ict-ebusiness.com	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	valid
_25._tcp.mx01-ad9c46d1.ict-ebusiness.com	DANE-TA: Trust Anchor Assertion Use subject public key SHA-256 Hash	valid	—

SSL check results of ict-ebusiness.com