SSL-Tools

SSL check results of mail.ru

NEW You can also bulk check multiple servers.

Discover if the mail servers for mail.ru can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 13 Jul 2020 13:50:54 +0000

The mailservers of mail.ru can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @mail.ru addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mxs.mail.ru
94.100.180.31
 10
supported
*.mail.ru
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
14 s
mxs.mail.ru
94.100.180.104
 10
supported
*.mail.ru
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s

Outgoing Mails

We have received emails from these servers with @mail.ru sender addresses. Test mail delivery

Host TLS Version & Cipher
srv03.23553.serviceprovider.de (212.223.35.234)
TLSv1.3 TLS_AES_256_GCM_SHA384
f162.i.mail.ru (128.140.171.250)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=*.mail.ru,OU=IT,O=LLC Mail.Ru,L=Moscow,C=RU

Certificate chain
Subject
Country (C)
  • RU
Locality (L)
  • Moscow
Organization (O)
  • LLC Mail.Ru
Organizational Unit (OU)
  • IT
Common Name (CN)
  • *.mail.ru
Alternative Names
  • *.mail.ru
  • mail.ru
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust RSA CA 2018
validity period
Not valid before
2017-12-15
Not valid after
2020-12-14
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
E5:69:2C:B9:61:94:AC:2B:B1:66:59:C4:F4:B4:B3:7B:74:63:68:83:D7:FF:DB:1B:7C:64:3D:15:E2:9E:E6:6B
SHA1
FB:B4:BF:9D:B6:AA:AC:58:CE:53:3B:41:E4:83:AC:2A:C3:F0:C5:C5
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5
subjectKeyIdentifier
  • D4:40:71:F8:08:FC:9B:DC:FE:B4:C8:D7:72:F7:6D:BA:A1:90:DC:7A
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt