SSL check results of mail.gov.il

NEW You can also bulk check multiple servers.

Discover if the mail servers for mail.gov.il can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Tue, 14 Jan 2020 22:01:14 +0000

The mailservers of mail.gov.il can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.gov.il addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.tehila.gov.il
147.237.71.125
5
supported
mail.tehila.gov.il
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
21 s

Outgoing Mails

We have not received any emails from a @mail.gov.il address so far. Test mail delivery

Certificates

First seen at:

CN=mail.tehila.gov.il

Certificate chain
Subject
Common Name (CN)
  • mail.tehila.gov.il
Alternative Names
  • mail.tehila.gov.il
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte RSA CA 2018
validity period
Not valid before
2019-05-13
Not valid after
2021-06-11
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
93:3B:51:6D:5E:18:7F:28:94:6C:9B:A2:8E:FD:2D:20:DF:38:16:67:B0:4F:67:52:AF:46:0E:1C:2C:F7:25:91
SHA1
43:CF:10:42:BC:7B:E4:E7:06:CE:50:27:6C:1A:97:5A:9B:39:46:5F
X509v3 extensions
authorityKeyIdentifier
  • keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A
subjectKeyIdentifier
  • 82:E2:60:B8:80:87:63:08:B0:7A:96:DF:35:F5:23:3C:FB:DB:9E:13
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.2
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.1
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : May 13 12:17:06.219 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:7F:BC:6C:DD:01:EF:DC:A9:46:CA:42:B8:
  • AC:6E:C8:FD:9C:0C:D3:62:04:4A:71:5A:8B:A6:1D:8F:
  • FA:F9:AB:87:02:21:00:FF:60:14:D1:75:C4:A7:B2:66:
  • 3E:75:00:2F:7F:86:7B:00:1E:40:AD:CF:92:0D:69:32:
  • E8:79:A6:1F:3A:AD:64
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : May 13 12:17:06.507 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:09:4D:22:18:FA:F7:1D:E1:87:63:63:06:
  • 15:0C:85:90:F9:0B:1A:8E:2F:4B:CE:19:FE:8C:95:80:
  • 81:9D:B2:4E:02:20:0E:93:95:28:FF:89:31:FA:FB:BC:
  • 94:2A:BE:93:3C:A3:56:06:62:4C:9C:F1:FD:F9:55:51:
  • 1F:40:CD:2E:C4:DF
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 44:94:65:2E:B0:EE:CE:AF:C4:40:07:D8:A8:FE:28:C0:
  • DA:E6:82:BE:D8:CB:31:B5:3F:D3:33:96:B5:B6:81:A8
  • Timestamp : May 13 12:17:06.129 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:30:4C:73:72:7F:A6:3B:C2:7D:A5:DA:5E:
  • 23:FF:41:0D:4E:A3:92:3D:75:FC:FD:B9:EE:D0:27:A5:
  • 52:95:D0:53:02:20:0A:7B:17:16:A9:19:62:A0:08:04:
  • 70:97:C0:F8:8A:7E:C1:74:32:8F:48:19:68:75:E6:3F:
  • 2A:A5:81:CA:F5:E9