SSL check results of mfw.dren.mil

NEW You can also bulk check multiple servers.

Discover if the mail servers for mfw.dren.mil can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Thu, 15 Apr 2021 15:18:42 +0000

We can not guarantee a secure connection to the mailservers of mfw.dren.mil!

Please contact the operator of mfw.dren.mil and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/mfw.dren.mil

Servers

Incoming Mails

These servers are responsible for incoming mails to @mfw.dren.mil addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mfw.dren.mil
140.32.61.234
-
supported
mfw.dren.mil
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
18 s
mfw.dren.mil
2001:480:b0:f003::234
Results incomplete
-
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
2 s

Outgoing Mails

We have not received any emails from a @mfw.dren.mil address so far. Test mail delivery

Certificates

First seen at:

CN=mfw.dren.mil,OU=USN,OU=PKI,OU=DoD,O=U.S. Government,C=US

Certificate chain
  • mfw.dren.mil
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • DOD SW CA-54
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • DoD Root CA 3 (Certificate is self-signed.)
            • remaining
            • 2048 bit
            • sha256WithRSAEncryption
            • Unknown Authority

Subject
Country (C)
  • US
Organization (O)
  • U.S. Government
Organizational Unit (OU)
  • DoD
  • PKI
  • USN
Common Name (CN)
  • mfw.dren.mil
Alternative Names
  • mfw.dren.mil
  • mf.dren.mil
  • ppaw.dren.mil
  • mfw-mgt.dren.mil
Issuer
Country (C)
  • US
Organization (O)
  • U.S. Government
Organizational Unit (OU)
  • DoD
  • PKI
Common Name (CN)
  • DOD SW CA-54
validity period
Not valid before
2019-01-15
Not valid after
2022-01-15
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
  • 1.3.6.1.5.5.8.2.2
Fingerprints
SHA256
41:EE:92:1C:E0:B9:32:ED:84:4D:1F:DE:D8:95:53:F1:27:58:7D:5F:3D:30:6C:8D:B9:23:FF:B3:9B:BF:6E:12
SHA1
1D:5B:B4:8F:31:AB:55:11:CC:14:FE:61:4E:B2:07:E8:85:FC:71:91
X509v3 extensions
authorityKeyIdentifier
  • keyid:B0:B7:28:BF:2C:04:89:8A:74:26:AF:AA:13:8C:02:10:55:81:79:B1
subjectKeyIdentifier
  • 81:7B:E1:09:BB:0E:26:DB:F8:34:FD:EC:13:D0:FE:25:52:ED:5C:4B
authorityInfoAccess
  • CA Issuers - URI:http://crl.disa.mil/sign/DODSWCA_54.cer
  • OCSP - URI:http://ocsp.disa.mil
crlDistributionPoints
  • Full Name:
  • URI:http://crl.disa.mil/crl/DODSWCA_54.crl
certificatePolicies
  • Policy: 2.16.840.1.101.2.1.11.39