SSL-Tools

SSL check results of nl4ehv.nl

NEW You can also bulk check multiple servers.

Discover if the mail servers for nl4ehv.nl can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 27 May 2020 00:32:13 +0000

We can not guarantee a secure connection to the mailservers of nl4ehv.nl!

Please contact the operator of nl4ehv.nl and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/nl4ehv.nl

Servers

Incoming Mails

These servers are responsible for incoming mails to @nl4ehv.nl addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
nl4ehv.nl
2001:985:b205:1:ba27:ebff:fe38:84fc
Results incomplete
10 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
nl4ehv.nl
62.251.108.33
 10
supported
nl4ehv.nl
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
3 s
mxbackup1.junkemailfilter.com
184.105.182.149
 20
supported
junkemailfilter.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
mxbackup2.junkemailfilter.com
184.105.182.229
Results incomplete
30
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mxbackup2.junkemailfilter.com
184.105.182.219
Results incomplete
30
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mxbackup2.junkemailfilter.com
184.105.182.221
 30
supported
junkemailfilter.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
30 s
mxbackup2.junkemailfilter.com
184.105.182.210
 30
supported
junkemailfilter.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
31 s
mxbackup2.junkemailfilter.com
184.105.182.211
 30
supported
junkemailfilter.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
31 s
mxbackup2.junkemailfilter.com
184.105.182.220
 30
supported
junkemailfilter.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
31 s

Outgoing Mails

We have received emails from these servers with @nl4ehv.nl sender addresses. Test mail delivery

Host TLS Version & Cipher
lb1-smtp-cloud9.xs4all.net (194.109.24.22)
TLSv1.3 TLS_AES_256_GCM_SHA384
lb1-smtp-cloud8.xs4all.net (194.109.24.21)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
lb2-smtp-cloud7.xs4all.net (194.109.24.28)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
lb1-smtp-cloud7.xs4all.net (194.109.24.24)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
lb2-smtp-cloud8.xs4all.net (194.109.24.25)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
lb3-smtp-cloud8.xs4all.net (194.109.24.29)
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384

Certificates

First seen at:

CN=nl4ehv.nl,O=Internet Widgits Pty Ltd,ST=some_state,C=NL

Certificate chain
  • nl4ehv.nl (Certificate is self-signed.)
    • remaining
    • 4096 bit
    • sha512WithRSAEncryption
    • Unknown Authority
Subject
Country (C)
  • NL
State (ST)
  • some_state
Organization (O)
  • Internet Widgits Pty Ltd
Common Name (CN)
  • nl4ehv.nl
Issuer

Certificate is self-signed.

validity period
Not valid before
2020-01-21
Not valid after
2030-01-18
Fingerprints
SHA256
72:0F:A4:06:B8:D5:FE:65:9B:81:5C:82:BE:B9:36:80:25:D3:1C:52:82:DE:DC:8B:88:91:10:91:B8:34:AD:C1
SHA1
E2:03:77:23:E0:C4:AB:FF:62:8D:DA:AB:DA:34:D7:BC:4F:AD:73:9B
X509v3 extensions
subjectKeyIdentifier
  • D5:33:50:C6:25:B0:63:43:29:C7:E6:8A:9B:A2:E8:06:8C:C9:EF:AF
authorityKeyIdentifier
  • keyid:D5:33:50:C6:25:B0:63:43:29:C7:E6:8A:9B:A2:E8:06:8C:C9:EF:AF
First seen at:

CN=junkemailfilter.com

Certificate chain
Subject
Common Name (CN)
  • junkemailfilter.com
Alternative Names
  • *.junkemailfilter.com
  • junkemailfilter.com
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • Let's Encrypt Authority X3
validity period
Not valid before
2020-05-11
Not valid after
2020-08-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
67:BD:75:21:38:48:26:5E:D6:E2:0D:46:51:35:54:41:18:C9:62:B8:17:8D:EB:A7:2C:3A:1E:11:0A:67:CB:DD
SHA1
86:AE:7F:ED:09:D3:39:40:93:E9:FA:1A:D3:EF:D1:4F:1F:73:9C:A4
X509v3 extensions
subjectKeyIdentifier
  • FB:20:D2:FC:30:AA:F6:DC:89:B0:30:23:C6:40:1C:8E:85:77:B1:BD
authorityKeyIdentifier
  • keyid:A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1
authorityInfoAccess
  • OCSP - URI:http://ocsp.int-x3.letsencrypt.org
  • CA Issuers - URI:http://cert.int-x3.letsencrypt.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : B2:1E:05:CC:8B:A2:CD:8A:20:4E:87:66:F9:2B:B9:8A:
  • 25:20:67:6B:DA:FA:70:E7:B2:49:53:2D:EF:8B:90:5E
  • Timestamp : May 11 10:40:28.205 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:D6:27:75:B2:C3:04:DF:26:18:B1:36:
  • 1E:90:55:E2:62:47:10:72:94:AA:4C:5D:23:C5:84:1B:
  • 4A:8F:E1:97:19:02:21:00:9A:2F:A6:BB:60:96:BE:B9:
  • 0C:46:EF:E4:A0:75:1F:6A:16:B0:12:C5:FB:23:6D:EE:
  • 6D:63:9A:5B:DC:C7:C8:85
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : May 11 10:40:28.378 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:87:2D:7F:7C:D3:F8:CD:7A:18:9A:7A:
  • 20:47:38:20:01:58:62:F3:C7:05:89:44:2D:9F:6F:93:
  • 58:1D:87:98:F0:02:20:16:C5:81:2C:7D:E9:3F:80:32:
  • 3C:BE:A6:95:06:D7:58:75:FD:65:5E:6D:E0:EA:80:98:
  • E6:4C:38:C1:61:B2:21