Discover if the mail servers for mail.de can be reached through a secure connection.
To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.
Report created Tue, 03 Dec 2024 15:30:59 +0000
These servers are responsible for incoming mails to @mail.de addresses.
Hostname / IP address | Priority | STARTTLS | Certificates | Protocol | ||
---|---|---|---|---|---|---|
mx01.mail.de
2001:868:100:600::210
Results incomplete
|
10 |
supported
|
not checked |
|
2 s
|
|
mx01.mail.de
62.201.172.18
Results incomplete
|
10 |
supported
|
not checked |
|
1 s
|
|
mx02.mail.de
2001:868:100:600::211
Results incomplete
|
10 |
supported
|
not checked |
|
1 s
|
|
mx02.mail.de
62.201.172.19
Results incomplete
|
10 |
supported
|
not checked |
|
1 s
|
We have received emails from these servers with @mail.de sender addresses. Test mail delivery
Host | TLS Version & Cipher | |
---|---|---|
shout02.mail.de (IPv6:2001:868:100:600::217) |
TLSv1.2
AECDH-AES256-SHA
|
|
shout01.mail.de (IPv6:2001:868:100:600::216) |
TLSv1.2
AECDH-AES256-SHA
|
|
shout11.mail.de (IPv6:2001:868:100:600::f153) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
shout12.mail.de (IPv6:2001:868:100:600::f154) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
No Certificates found
DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.
Name | Options | DNSSEC | Matches |
---|---|---|---|
_25._tcp.mx01.mail.de |
|
valid
|
— |
_25._tcp.mx01.mail.de |
|
valid
|
— |
_25._tcp.mx02.mail.de |
|
valid
|
— |
_25._tcp.mx02.mail.de |
|
valid
|
— |