magic.com.br - TLS / STARTTLS Test

Discover if the mail servers for magic.com.br can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 21 Mar 2023 16:13:59 +0000

Certificates

Trustworthy
Protocol

Problems found
DANE

Missing

We can not guarantee a secure connection to the mailservers of magic.com.br!

Please contact the operator of magic.com.br and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/magic.com.br

Servers

Incoming Mails

These servers are responsible for incoming mails to @magic.com.br addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
isaac.mx.cloudflare.net 2606:4700:f5::10 Results incomplete	28	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
isaac.mx.cloudflare.net 2606:4700:f5::f Results incomplete	28	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
isaac.mx.cloudflare.net 2606:4700:f5::e Results incomplete	28	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
isaac.mx.cloudflare.net 162.159.205.17	28	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
isaac.mx.cloudflare.net 162.159.205.19	28	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
isaac.mx.cloudflare.net 162.159.205.18	28	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
linda.mx.cloudflare.net 2606:4700:f5::d Results incomplete	39	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
linda.mx.cloudflare.net 2606:4700:f5::b Results incomplete	39	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
linda.mx.cloudflare.net 2606:4700:f5::c Results incomplete	39	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
linda.mx.cloudflare.net 162.159.205.23	39	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
linda.mx.cloudflare.net 162.159.205.25	39	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
linda.mx.cloudflare.net 162.159.205.24	39	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 2 s
amir.mx.cloudflare.net 2606:4700:f5::13 Results incomplete	82	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 4 s
amir.mx.cloudflare.net 2606:4700:f5::12 Results incomplete	82	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
amir.mx.cloudflare.net 2606:4700:f5::11 Results incomplete	82	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2023-03-21 1 s
amir.mx.cloudflare.net 162.159.205.13	82	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
amir.mx.cloudflare.net 162.159.205.12	82	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s
amir.mx.cloudflare.net 162.159.205.11	82	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2023-03-21 1 s

Outgoing Mails

We have not received any emails from a @magic.com.br address so far. Test mail delivery

Certificates

First seen at: 2023-03-08

CN=*.mx.cloudflare.net,O=Cloudflare\, Inc.,L=San Francisco,ST=California,C=US

Certificate chain

*.mx.cloudflare.net
- 2024-01-23 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Country (C)

State (ST)

California

Locality (L)

San Francisco

Organization (O)

Cloudflare, Inc.

Common Name (CN)

*.mx.cloudflare.net

Alternative Names

*.mx.cloudflare.net
mx.cloudflare.net

Issuer

Country (C)

Organization (O)

DigiCert Inc

Common Name (CN)

DigiCert TLS RSA SHA256 2020 CA1

validity period

Not valid before: 2023-01-24
Not valid after: 2024-01-23

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: EE:9E:CB:10:40:7C:14:D3:6B:DD:D1:8E:E2:10:22:06:6B:24:16:5A:32:4C:42:1D:B9:FB:5A:C9:8D:9F:39:E4
SHA1: 1A:F8:44:A0:83:A5:65:5C:4F:74:88:1C:52:94:D7:B5:2A:28:EF:44

X509v3 extensions

authorityKeyIdentifier

keyid:B7:6B:A2:EA:A8:AA:84:8C:79:EA:B4:DA:0F:98:B2:C5:95:76:B9:F4

subjectKeyIdentifier

48:EE:29:FF:5B:6E:D4:FF:89:27:23:6D:1D:EB:39:95:4F:F7:1E:8D

crlDistributionPoints

Full Name:
URI:http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
Full Name:
URI:http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl

certificatePolicies

Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Jan 24 11:38:51.778 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:67:D6:3A:81:0C:2A:B4:60:6A:82:93:75:
8B:F5:7B:72:1C:47:1E:BD:12:44:70:02:49:9A:56:89:
5F:33:FE:2F:02:21:00:D2:ED:CA:E6:57:63:EB:69:27:
FC:F8:F4:8F:07:40:14:4B:DC:41:F1:E8:23:10:DF:C7:
EE:A5:5F:66:6C:70:E8
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 73:D9:9E:89:1B:4C:96:78:A0:20:7D:47:9D:E6:B2:C6:
1C:D0:51:5E:71:19:2A:8C:6B:80:10:7A:C1:77:72:B5
Timestamp : Jan 24 11:38:51.796 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:C6:5D:2F:61:16:F4:40:81:88:EC:2E:
79:22:79:AB:FB:53:8A:9D:77:FE:9F:54:39:C7:E2:E9:
E9:42:FE:56:D6:02:20:45:44:D3:29:06:B1:85:E8:79:
58:D6:00:D7:97:22:47:8B:F1:81:4C:36:27:F8:97:B1:
E6:63:7E:C2:4C:28:FF
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Jan 24 11:38:51.755 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:4F:79:4A:B5:F0:FA:B9:4C:19:5E:0A:28:
F3:53:09:4F:5D:19:B8:5B:43:AC:6F:05:4D:9A:94:A9:
25:DC:2B:B5:02:21:00:E5:B8:70:5F:08:E0:1B:D7:2E:
BC:63:18:D5:E7:4B:D6:03:B7:C3:EC:AB:ED:38:10:AA:
88:13:F3:F7:90:68:01

SSL check results of magic.com.br