pma-it.de - TLS / STARTTLS Test

Discover if the mail servers for pma-it.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Tue, 08 Aug 2023 14:58:21 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of pma-it.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @pma-it.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mail.pma-it.de 2a0a:51c0::1:0:e	10	supported	mail.pma-it.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2023-08-08 2 s
mail.pma-it.de 45.91.101.15	10	supported	mail.pma-it.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 ~~SSLv3~~	2023-08-08 2 s

Outgoing Mails

We have received emails from these servers with @pma-it.de sender addresses. Test mail delivery

Host	TLS Version & Cipher
mail.pma-it.de (45.91.101.15)	TLSv1.3 TLS_AES_256_GCM_SHA384	2021-08-20

Certificates

First seen at: 2023-08-08

CN=mail.pma-it.de

Certificate chain

mail.pma-it.de
- 2024-08-07 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mail.pma-it.de

Alternative Names

mail.pma-it.de

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

Encryption Everywhere DV TLS CA - G1

validity period

Not valid before: 2023-08-08
Not valid after: 2024-08-07

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 9F:34:18:CD:56:62:8F:30:23:99:4F:31:29:4A:49:F7:CF:9E:01:2B:ED:29:B6:F6:B6:33:F8:AF:E7:7D:B3:B7
SHA1: 97:38:11:8B:D6:F1:6C:93:8C:65:67:BA:C7:BF:89:D7:74:DC:52:E1

X509v3 extensions

authorityKeyIdentifier

keyid:55:74:4F:B2:72:4F:F5:60:BA:50:D1:D7:E6:51:5C:9A:01:87:1A:D7

subjectKeyIdentifier

D8:D7:12:E8:5B:C7:FA:2B:09:5F:2B:00:32:9A:A8:3A:CF:D2:80:7C

certificatePolicies

Policy: 2.23.140.1.2.1
CPS: http://www.digicert.com/CPS

authorityInfoAccess

OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 8 14:21:06.973 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:13:33:49:9A:9B:9F:5D:A1:B5:BF:30:A1:
39:6F:12:AC:41:A2:C6:86:50:7D:71:FB:17:2E:70:1D:
1A:0B:17:06:02:20:1E:9D:0B:33:D9:D5:E4:F4:71:9E:
07:69:1F:D5:E8:DA:DA:89:4C:71:90:1F:D7:56:93:4F:
37:A3:46:BE:78:71
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 8 14:21:06.994 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:20:6E:FA:B2:91:CC:20:24:26:9D:C1:50:27:
03:86:CC:BB:9C:A7:6E:89:10:39:1D:A9:6C:6B:3C:E1:
4C:E2:FA:B6:02:1F:47:EF:77:1C:B5:F0:E9:0F:CB:3D:
4C:5F:C6:2B:C4:C8:22:6D:A9:33:EA:AB:15:F8:B1:39:
F1:A5:CA:DE:9B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Aug 8 14:21:06.935 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:44:21:A9:3E:DD:84:C3:A1:6C:0C:85:DF:
7D:41:41:12:C7:3B:7B:23:C4:A1:54:FB:42:54:9F:E3:
59:EC:1D:1F:02:21:00:8A:18:87:E6:32:4B:BE:7D:16:
EF:D2:B7:8B:F8:E1:CA:62:37:3C:C7:CC:CE:95:E3:3D:
CF:7A:B7:14:20:B8:4A

SSL check results of pma-it.de