khbarth.de - TLS / STARTTLS Test

Discover if the mail servers for khbarth.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 22 Jun 2023 12:51:58 +0000

Certificates

Not checked
Protocol

Not checked
DANE

Problems found

No connection to the mailservers of khbarth.de could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @khbarth.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mailz.khbarth.de 2a02:c206:3008:9669::1 Results incomplete	10	supported	not checked	DANE errors PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-06-22 5 s
mailz.khbarth.de 185.187.170.28 Results incomplete	10	supported	not checked	DANE errors PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2023-06-22 4 s

Outgoing Mails

We have not received any emails from a @khbarth.de address so far. Test mail delivery

Certificates

No Certificates found

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name	Options	DNSSEC	Matches
_25._tcp.mailz.khbarth.de	DANE-TA: Trust Anchor Assertion Use subject public key SHA-256 Hash	valid	—
_25._tcp.mailz.khbarth.de	DANE-EE: Domain Issued Certificate Use subject public key SHA-256 Hash	valid	—

SSL check results of khbarth.de