SSL check results of privatemail.dk

NEW You can also bulk check multiple servers.

Discover if the mail servers for privatemail.dk can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 30 Sep 2024 00:30:13 +0000

We can not guarantee a secure connection to the mailservers of privatemail.dk!

Please contact the operator of privatemail.dk and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/privatemail.dk

Servers

Incoming Mails

These servers are responsible for incoming mails to @privatemail.dk addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mx2.privatemail.dk
2a05:d016:4a1:e102:fd75:10b2:fbdb:746a
Results incomplete
10
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
3 s
mx2.privatemail.dk
16.16.0.181
10
supported
mx2.privatemail.dk
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
5 s
mx1.privatemail.dk
2a05:d016:4a1:e101:1ef3:cecd:eab0:9fa4
Results incomplete
10
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
3 s
mx1.privatemail.dk
13.48.16.37
10
supported
mx1.privatemail.dk
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
5 s

Outgoing Mails

We have not received any emails from a @privatemail.dk address so far. Test mail delivery

Certificates

First seen at:

CN=mx2.privatemail.dk

Certificate chain
  • mx2.privatemail.dk
    • remaining
    • 256 bit
    • ecdsa-with-SHA384

      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mx2.privatemail.dk
Alternative Names
  • mx2.privatemail.dk
  • smtp.moellers.dk
  • smtp.privatemail.dk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2024-08-19
Not valid after
2024-11-17
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
30:F7:A0:FE:34:51:6B:C5:01:71:05:62:4E:66:84:A4:6B:E8:B8:60:EF:45:F8:BE:50:23:C5:CF:79:35:66:15
SHA1
10:15:5B:D5:E3:6D:13:7E:96:60:FB:97:FD:4B:66:A0:9D:11:C9:44
X509v3 extensions
subjectKeyIdentifier
  • F8:8C:E5:03:77:A8:D1:CC:C3:EA:0A:A8:D5:EF:FB:A0:4B:9E:BD:2A
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Aug 19 06:33:32.998 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:FB:20:90:B0:15:06:C3:FB:51:09:1A:
  • 42:41:FC:B5:93:B1:46:91:71:3B:18:0F:F3:92:55:63:
  • 38:58:58:49:81:02:20:6F:43:58:D1:36:3F:91:03:AF:
  • 5C:75:53:0B:87:9E:60:52:EB:0D:0E:34:C0:F8:51:CD:
  • 6F:DB:72:67:4A:FA:8E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
  • 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
  • Timestamp : Aug 19 06:33:33.193 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:95:EC:CA:91:8B:ED:2E:85:E8:3B:71:
  • 45:8C:6C:FA:DA:D5:F1:A8:7E:33:B2:0E:CB:F1:91:B8:
  • C1:CD:D9:0D:8E:02:21:00:EB:48:A8:75:02:6A:B0:9B:
  • 49:EB:AA:4D:E6:56:B5:03:54:7A:F3:5F:F7:1C:AD:A5:
  • 4E:7A:19:97:1E:6C:81:87
First seen at:

CN=mx1.privatemail.dk

Certificate chain
  • mx1.privatemail.dk
    • remaining
    • 256 bit
    • ecdsa-with-SHA384

      • E5
        • remaining
        • 384 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • mx1.privatemail.dk
Alternative Names
  • mx1.privatemail.dk
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • E5
validity period
Not valid before
2024-09-23
Not valid after
2024-12-22
This certifcate has been verified for the following usages:
  • Digital Signature
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
09:53:87:F0:F3:77:A8:25:20:D5:A0:64:A7:B2:55:40:95:42:C9:DA:80:4A:A1:45:CC:61:AD:A5:5B:42:71:49
SHA1
82:99:47:35:6A:C6:E7:27:E8:20:33:51:BF:EF:B6:D0:D8:DF:E4:EB
X509v3 extensions
subjectKeyIdentifier
  • 41:FA:E2:D4:E2:20:DA:23:55:ED:CB:04:50:DD:5A:B2:4D:03:58:D9
authorityKeyIdentifier
  • keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
authorityInfoAccess
  • OCSP - URI:http://e5.o.lencr.org
  • CA Issuers - URI:http://e5.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Sep 23 06:18:56.346 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F3:66:22:D7:0F:DB:09:81:71:D2:35:
  • D1:7C:A2:42:F4:B7:8E:39:26:FB:0B:A7:9B:90:74:20:
  • D9:25:7E:95:F9:02:20:0F:3B:A3:4D:08:E8:D7:01:A2:
  • 71:28:A3:41:8A:27:69:15:10:07:A6:24:6C:5A:8E:E3:
  • 3E:F8:E5:B0:57:D1:10
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Sep 23 06:18:56.306 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F2:F3:A6:AE:77:47:6A:AC:26:EF:53:
  • 30:65:E4:55:66:6B:7E:41:4C:27:D8:12:E1:F1:9F:39:
  • 10:FA:C2:EB:DD:02:20:39:3F:17:20:00:DA:2C:0B:B1:
  • BE:66:B7:5C:40:A4:FE:6F:12:4B:0E:30:32:7E:DA:35:
  • 99:C7:2A:9F:66:F0:8A

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx2.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.privatemail.dk
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid