llnet.de - TLS / STARTTLS Test

Discover if the mail servers for llnet.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sat, 26 Nov 2022 21:17:15 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of llnet.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @llnet.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
d316343.a.ess.de.barracudanetworks.com 18.185.115.251	10	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-11-26 11 s
d316343.a.ess.de.barracudanetworks.com 18.185.115.250	10	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-11-26 11 s
d316343.a.ess.de.barracudanetworks.com 18.185.115.252	10	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-11-26 11 s
d316343.b.ess.de.barracudanetworks.com 18.185.115.251	20	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-11-26 11 s
d316343.b.ess.de.barracudanetworks.com 18.185.115.250	20	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-11-26 11 s
d316343.b.ess.de.barracudanetworks.com 18.185.115.252	20	supported	*.a.ess.de.barracudanetworks.com	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2022-11-26 11 s

Outgoing Mails

We have not received any emails from a @llnet.de address so far. Test mail delivery

Certificates

First seen at: 2022-10-19

CN=*.a.ess.de.barracudanetworks.com,O=Barracuda Networks\, Inc.,L=Campbell,ST=California,C=US

Certificate chain

*.a.ess.de.barracudanetworks.com
- 2023-10-25 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Country (C)

State (ST)

California

Locality (L)

Campbell

Organization (O)

Barracuda Networks, Inc.

Common Name (CN)

*.a.ess.de.barracudanetworks.com

Alternative Names

*.a.ess.de.barracudanetworks.com
*.b.ess.de.barracudanetworks.com
*.o.ess.de.barracudanetworks.com
a.ess.de.barracudanetworks.com
b.ess.de.barracudanetworks.com
o.ess.de.barracudanetworks.com

Issuer

Country (C)

Organization (O)

DigiCert Inc

Common Name (CN)

DigiCert TLS RSA SHA256 2020 CA1

validity period

Not valid before: 2022-10-17
Not valid after: 2023-10-25

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: A0:0A:E5:60:0C:4E:9A:AB:1E:AA:DE:AD:D4:B2:38:34:AA:30:C0:87:BD:09:8C:77:E7:6C:98:98:37:BE:15:B1
SHA1: 2A:60:AF:D8:C9:33:BB:F7:DE:F3:70:16:0E:59:E7:EC:1E:99:2A:F4

X509v3 extensions

authorityKeyIdentifier

keyid:B7:6B:A2:EA:A8:AA:84:8C:79:EA:B4:DA:0F:98:B2:C5:95:76:B9:F4

subjectKeyIdentifier

0B:4B:5B:62:48:7C:AB:39:B9:67:8A:65:A8:E7:76:8F:EF:95:EC:D8

crlDistributionPoints

Full Name:
URI:http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Full Name:
URI:http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl

certificatePolicies

Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
Timestamp : Oct 17 22:40:04.855 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:19:DC:51:F5:18:B0:B1:EA:94:3E:09:36:
22:BE:69:83:A4:D6:08:BD:BD:54:DB:1E:BF:DF:20:EF:
C7:48:7D:CC:02:21:00:EE:4C:E5:8D:72:83:76:60:0C:
98:83:A2:81:35:FE:8F:9F:A3:49:B1:2F:50:8D:6D:AF:
D6:C3:81:DD:C1:C0:4B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : B3:73:77:07:E1:84:50:F8:63:86:D6:05:A9:DC:11:09:
4A:79:2D:B1:67:0C:0B:87:DC:F0:03:0E:79:36:A5:9A
Timestamp : Oct 17 22:40:04.910 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:5D:8C:32:35:40:54:B8:E2:7D:9F:10:03:
FE:0B:05:6B:21:C6:15:8C:C5:C2:43:03:35:41:36:DA:
4D:7B:B5:3D:02:21:00:DD:E9:EB:33:D4:65:4C:78:AD:
65:AE:D5:B1:0C:18:78:10:F6:B6:71:95:14:F3:25:7A:
F0:2B:B9:1F:04:F9:07
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : B7:3E:FB:24:DF:9C:4D:BA:75:F2:39:C5:BA:58:F4:6C:
5D:FC:42:CF:7A:9F:35:C4:9E:1D:09:81:25:ED:B4:99
Timestamp : Oct 17 22:40:04.881 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:24:33:AC:23:BB:0E:E5:B9:5F:0D:81:77:
28:AA:38:75:4E:16:8E:B9:6F:8F:81:AE:52:8D:93:24:
BE:51:0C:08:02:20:4C:26:5A:4A:36:5E:2F:BD:D6:F7:
28:E9:42:9A:BD:74:7F:9B:26:EA:83:5A:62:C5:70:AA:
D6:F3:D0:88:79:E9

SSL check results of llnet.de