SSL check results of imas.gmbh

NEW You can also bulk check multiple servers.

Discover if the mail servers for imas.gmbh can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 02 Dec 2019 23:19:25 +0000

We can not guarantee a secure connection to the mailservers of imas.gmbh!

Please contact the operator of imas.gmbh and ask him or her to solve this problem. This result stays accessible under the following address:

https://ssl-tools.net/mailservers/imas.gmbh

Servers

Incoming Mails

These servers are responsible for incoming mails to @imas.gmbh addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.imas.gmbh
2001:8d8:1800:80c2:1001:ab45:1427:17e4
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mail.imas.gmbh
93.90.195.146
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
relay.rzone.de
81.169.145.96
200
supported
relay.rzone.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
1 s

Outgoing Mails

We have not received any emails from a @imas.gmbh address so far. Test mail delivery

Certificates

First seen at:

CN=relay.rzone.de

Certificate chain
  • relay.rzone.de
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Unknown Authority

      Thawte RSA CA 2018
Subject
Common Name (CN)
  • relay.rzone.de
Alternative Names
  • relay.rzone.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte RSA CA 2018
validity period
Not valid before
2019-03-25
Not valid after
2020-03-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
06:9C:A1:B6:B7:45:AF:C8:B1:F1:DA:E0:BE:56:3E:7B:A6:51:B7:67:1F:86:7F:95:AF:3F:56:09:98:6F:EF:70
SHA1
BD:41:17:0E:05:71:DF:05:B7:DF:42:A6:1E:9C:32:CE:56:08:EF:AB
X509v3 extensions
authorityKeyIdentifier
  • keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A
subjectKeyIdentifier
  • 7C:38:03:4F:D7:B6:84:01:B7:FD:FC:91:FB:7B:55:C0:20:DF:A6:16
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:4B:BD:B7:75:CE:60:BA:E1:42:69:1F:AB:E1:9E:66:
  • A3:0F:7E:5F:B0:72:D8:83:00:C4:7B:89:7A:A8:FD:CB
  • Timestamp : Mar 25 15:01:32.669 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:80:7C:35:06:86:1E:62:15:FB:5C:67:
  • 9A:6E:5C:ED:56:78:C8:60:F5:4B:11:DC:3C:1F:B1:46:
  • 42:69:B7:E3:54:02:20:7A:34:22:F1:A0:69:A6:D7:6F:
  • 52:D2:0F:46:6B:27:89:D7:75:BA:9B:92:01:D3:20:B8:
  • 1E:6F:8C:6F:30:E8:34
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Mar 25 15:01:32.992 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:79:FA:D8:F3:86:85:92:E7:38:6F:CA:EB:
  • 49:06:18:5C:29:1D:1A:F9:75:5C:A2:A6:94:B2:5A:3B:
  • B3:19:01:A0:02:21:00:8D:82:41:49:36:9F:EE:63:11:
  • 2B:F0:50:ED:57:EC:FD:B7:08:DB:F4:44:ED:5C:8B:F9:
  • 68:3B:BB:B1:03:EF:9A