SSL check results of mail.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for mail.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 10 Sep 2020 14:10:54 +0000

No connection to the mailservers of mail.de could be established.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx02.mail.de
2001:868:100:600::211
Results incomplete
10
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx02.mail.de
62.201.172.19
Results incomplete
10
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx01.mail.de
2001:868:100:600::210
Results incomplete
10
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
mx01.mail.de
62.201.172.18
Results incomplete
10
supported
not checked
DANE
errors
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s

Outgoing Mails

We have received emails from these servers with @mail.de sender addresses. Test mail delivery

Host TLS Version & Cipher
shout12.mail.de (IPv6:2001:868:100:600::f154)
TLSv1.3 TLS_AES_256_GCM_SHA384
unknown (IPv6:2001:868:100:600::217)
TLSv1.2 AECDH-AES256-SHA
shout01.mail.de (IPv6:2001:868:100:600::216)
TLSv1.2 AECDH-AES256-SHA

Certificates

No Certificates found

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx02.mail.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx02.mail.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx01.mail.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx01.mail.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid