SSL-Tools

SSL check results of mh.government.bg

NEW You can also bulk check multiple servers.

Discover if the mail servers for mh.government.bg can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 15 Apr 2021 20:51:51 +0000

We can not guarantee a secure connection to the mailservers of mh.government.bg!

Please contact the operator of mh.government.bg and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/mh.government.bg

Servers

Incoming Mails

These servers are responsible for incoming mails to @mh.government.bg addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
benz.mh.government.bg
212.122.183.66
 100
supported
benz.mh.government.bg
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s
as.mh.government.bg
212.122.183.113
Results incomplete
140
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s

Outgoing Mails

We have not received any emails from a @mh.government.bg address so far. Test mail delivery

Certificates

First seen at:

emailAddress=it@mh.government.bg,CN=benz.mh.government.bg,OU=IT,O=MH,ST=SF,C=BG

Certificate chain
  • benz.mh.government.bg
    • remaining
    • 2048 bit
    • sha512WithRSAEncryption
    • Expired
    • Unknown Authority
      MH-CERTSERV-CA
Subject
Country (C)
  • BG
State (ST)
  • SF
Organization (O)
  • MH
Organizational Unit (OU)
  • IT
Common Name (CN)
  • benz.mh.government.bg
Email
  • it@mh.government.bg
Issuer
Domain Component (DC)
  • bg
  • government
  • mh
Common Name (CN)
  • MH-CERTSERV-CA
validity period
Not valid before
2018-06-11
Not valid after
2020-06-10
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
6E:73:C4:08:43:82:36:BD:86:41:14:69:21:43:DC:3A:E0:92:B3:C9:69:85:48:C9:FE:6E:71:96:3A:CA:F5:BC
SHA1
9A:1D:A2:15:35:2B:17:AB:D4:4C:AC:1F:22:D7:01:D2:BE:E8:C3:B9
X509v3 extensions
subjectKeyIdentifier
  • AB:2D:2C:90:B1:46:84:59:BF:45:50:8C:89:25:36:AC:3C:6B:E9:9A
authorityKeyIdentifier
  • keyid:37:66:DC:95:73:FD:BA:59:DF:96:88:B2:19:E4:7F:E5:8C:CC:E4:6E
crlDistributionPoints
  • Full Name:
  • URI:ldap:///CN=MH-CERTSERV-CA,CN=certserv,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=mh,DC=government,DC=bg?certificateRevocationList?base?objectClass=cRLDistributionPoint
authorityInfoAccess
  • CA Issuers - URI:ldap:///CN=MH-CERTSERV-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=mh,DC=government,DC=bg?cACertificate?base?objectClass=certificationAuthority
1_3_6_1_4_1_311_20_2
  • ...W.e.b.S.e.r.v.e.r