ohjunge.eu - TLS / STARTTLS Test

Discover if the mail servers for ohjunge.eu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 08 Feb 2024 15:31:39 +0000

Certificates

Trustworthy
Protocol

Problems found
DANE

Missing

We can not guarantee a secure connection to the mailservers of ohjunge.eu!

Please contact the operator of ohjunge.eu and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/ohjunge.eu

Servers

Incoming Mails

These servers are responsible for incoming mails to @ohjunge.eu addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
route1.mx.cloudflare.net 2606:4700:f5::b Results incomplete	17	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route1.mx.cloudflare.net 2606:4700:f5::d Results incomplete	17	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route1.mx.cloudflare.net 2606:4700:f5::c Results incomplete	17	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route1.mx.cloudflare.net 162.159.205.13	17	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 2 s
route1.mx.cloudflare.net 162.159.205.11	17	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 2 s
route1.mx.cloudflare.net 162.159.205.12	17	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 2 s
route3.mx.cloudflare.net 2606:4700:f5::11 Results incomplete	21	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route3.mx.cloudflare.net 2606:4700:f5::12 Results incomplete	21	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route3.mx.cloudflare.net 2606:4700:f5::13 Results incomplete	21	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route3.mx.cloudflare.net 162.159.205.25	21	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 1 s
route3.mx.cloudflare.net 162.159.205.24	21	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 1 s
route3.mx.cloudflare.net 162.159.205.23	21	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 2 s
route2.mx.cloudflare.net 2606:4700:f5::10 Results incomplete	44	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route2.mx.cloudflare.net 2606:4700:f5::f Results incomplete	44	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route2.mx.cloudflare.net 2606:4700:f5::e Results incomplete	44	unsupported	not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2024-02-08 1 s
route2.mx.cloudflare.net 162.159.205.19	44	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 1 s
route2.mx.cloudflare.net 162.159.205.17	44	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 1 s
route2.mx.cloudflare.net 162.159.205.18	44	supported	*.mx.cloudflare.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-02-08 1 s

Outgoing Mails

We have not received any emails from a @ohjunge.eu address so far. Test mail delivery

Certificates

First seen at: 2023-12-16

CN=*.mx.cloudflare.net,O=Cloudflare\, Inc.,L=San Francisco,ST=California,C=US

Certificate chain

*.mx.cloudflare.net
- 2025-01-12 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Country (C)

State (ST)

California

Locality (L)

San Francisco

Organization (O)

Cloudflare, Inc.

Common Name (CN)

*.mx.cloudflare.net

Alternative Names

*.mx.cloudflare.net
mx.cloudflare.net

Issuer

Country (C)

Organization (O)

DigiCert Inc

Common Name (CN)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

validity period

Not valid before: 2023-12-13
Not valid after: 2025-01-12

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: DC:E9:C1:79:FB:69:3C:85:C2:6E:8B:5D:13:E4:D6:A0:82:03:05:18:FC:9E:5C:32:CE:1C:79:DB:A7:DE:06:AB
SHA1: 08:A0:B3:63:73:5B:7B:BF:20:49:52:53:35:88:07:D5:BA:B2:C7:B1

X509v3 extensions

authorityKeyIdentifier

keyid:74:85:80:C0:66:C7:DF:37:DE:CF:BD:29:37:AA:03:1D:BE:ED:CD:17

subjectKeyIdentifier

81:6C:A3:B8:D3:FD:29:CD:C7:F2:04:FE:A2:31:07:28:B0:35:35:29

certificatePolicies

Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS

crlDistributionPoints

Full Name:
URI:http://crl3.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl
Full Name:
URI:http://crl4.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crl

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/DigiCertGlobalG2TLSRSASHA2562020CA1-1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Dec 13 12:42:27.442 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:94:BA:62:11:68:99:6A:05:7E:E6:0A:
31:33:54:7B:D0:7A:EA:A8:F2:2D:38:52:AC:69:BD:98:
43:B6:AD:50:6F:02:20:24:C6:DD:71:EC:7D:89:54:ED:
55:F8:82:C7:73:DB:04:25:5D:54:A3:B8:BA:6C:63:82:
1E:5B:74:65:C3:EF:5A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Dec 13 12:42:27.506 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:9F:FC:23:39:90:22:A8:AF:4A:AC:63:
70:A0:B0:14:2F:85:D6:2B:6D:3E:43:15:B9:9C:CC:B0:
C6:84:2E:74:24:02:20:3A:64:E2:4D:AF:63:1A:BE:86:
21:A7:CB:11:A5:9E:DF:ED:D3:F3:A1:34:D4:02:D9:DA:
7A:0E:C6:6E:10:F5:05
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Dec 13 12:42:27.497 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:C1:05:8A:F1:08:C9:D0:3D:D3:3D:25:
FB:F4:B6:B3:8F:F0:80:8A:1F:8D:32:53:03:44:0B:84:
1D:D6:9A:FE:69:02:20:33:B4:98:00:8D:12:9B:B4:4E:
EB:53:96:ED:3E:41:C6:ED:AD:9B:51:E4:62:95:D3:60:
1C:AC:2C:5C:9F:9C:C2

SSL check results of ohjunge.eu