it-groening.de - TLS / STARTTLS Test

Discover if the mail servers for it-groening.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 30 Mar 2024 17:51:33 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of it-groening.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @it-groening.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
srv2.it-groening.de 2a03:4000:51:c82::1	10	supported	it-groening.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-03-30 1 s
srv2.it-groening.de 2a03:4000:51:c82:d820:7fff:fef7:4483	10	supported	it-groening.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-03-30 1 s
srv2.it-groening.de 94.16.109.142	10	supported	it-groening.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-03-30 1 s

Outgoing Mails

We have received emails from these servers with @it-groening.de sender addresses. Test mail delivery

Host	TLS Version & Cipher
srv2.it-groening.de (94.16.109.142)	TLSv1.3 TLS_AES_256_GCM_SHA384	2021-02-16
unknown (IPv6:2a03:4000:51:c82:d820:7fff:fef7:4483)	TLSv1.3 TLS_AES_256_GCM_SHA384	2021-02-07
srv2.it-groening.de (185.207.105.14)	TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384	2021-02-01

Certificates

First seen at: 2024-03-30

CN=it-groening.de

Certificate chain

it-groening.de
- 2024-06-28 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

it-groening.de

Alternative Names

*.it-groening.de
it-groening.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-03-30
Not valid after: 2024-06-28

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: F1:4F:9C:C8:A6:8F:02:D1:5A:E4:A6:4F:74:BC:16:19:80:25:27:E4:02:ED:AD:5D:41:DC:D1:EE:DF:80:4C:41
SHA1: 8F:08:B3:4D:DB:FE:30:2E:96:EF:D3:14:C3:26:83:4C:82:BB:AF:B0

X509v3 extensions

subjectKeyIdentifier

E1:36:11:E0:D6:94:03:38:E3:C2:2C:94:8C:D4:37:B3:8B:1A:6F:DA

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Mar 30 17:47:53.802 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:3C:46:BA:BB:03:61:0E:D1:6E:66:2E:34:
58:B4:F1:2A:D1:17:F8:8B:C2:CB:E6:47:3E:09:EF:C2:
2A:79:F7:A7:02:20:18:60:3D:0C:95:7E:08:14:74:9E:
89:EA:CA:DD:69:09:A5:BA:C5:F0:9B:77:CF:79:88:EE:
7D:C6:F3:D7:61:40
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
Timestamp : Mar 30 17:47:53.827 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:C8:91:D0:8F:14:78:2D:C4:1E:0F:F9:
2C:62:8C:CA:CD:02:D3:86:02:6B:03:52:E4:72:79:AC:
E8:2F:7D:E0:35:02:21:00:80:FB:E5:F7:BB:39:3E:50:
A9:36:E7:F3:F3:26:E0:EC:1E:44:96:ED:D0:01:02:EC:
B7:12:C2:DA:8E:7D:85:6F

SSL check results of it-groening.de