Discover if the mail servers for protonmail.com can be reached through a secure connection.
To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.
Report created Thu, 11 Apr 2024 14:42:19 +0000
These servers are responsible for incoming mails to @protonmail.com addresses.
Hostname / IP address | Priority | STARTTLS | Certificates | Protocol | ||
---|---|---|---|---|---|---|
mail.protonmail.ch
176.119.200.128
|
5 |
supported
|
protonmail.com |
|
30 s
|
|
mail.protonmail.ch
185.70.42.128
|
5 |
supported
|
protonmail.com |
|
42 s
|
|
mail.protonmail.ch
185.205.70.128
|
5 |
supported
|
protonmail.com |
|
43 s
|
|
mailsec.protonmail.ch
176.119.200.129
|
10 |
supported
|
protonmail.com |
|
14 s
|
|
mailsec.protonmail.ch
185.205.70.129
|
10 |
supported
|
protonmail.com |
|
18 s
|
|
mailsec.protonmail.ch
185.70.42.129
|
10 |
supported
|
protonmail.com |
|
19 s
|
We have received emails from these servers with @protonmail.com sender addresses. Test mail delivery
Host | TLS Version & Cipher | |
---|---|---|
mail-40133.protonmail.ch (185.70.40.133) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail4.protonmail.ch (185.70.40.27) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-4325.protonmail.ch (185.70.43.25) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-4316.protonmail.ch (185.70.43.16) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40137.protonmail.ch (185.70.40.137) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40132.protonmail.ch (185.70.40.132) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40130.protonmail.ch (185.70.40.130) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40136.protonmail.ch (185.70.40.136) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40134.protonmail.ch (185.70.40.134) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail2.protonmail.ch (185.70.40.22) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40135.protonmail.ch (185.70.40.135) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
mail-40141.protonmail.ch (185.70.40.141) |
TLSv1.3
TLS_AES_256_GCM_SHA384
|
|
unknown (103.140.251.177) |
Insecure - not encrypted!
|
|
unknown (103.151.122.176) |
Insecure - not encrypted!
|
|
mail-40131.protonmail.ch (185.70.40.131) |
TLSv1.2
ECDHE-RSA-AES256-GCM-SHA384
|
|
unknown (45.143.222.16) |
Insecure - not encrypted!
|
|
mail1.protonmail.ch (185.70.40.18) |
TLSv1.2
ECDHE-RSA-AES256-GCM-SHA384
|
DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.
Name | Options | DNSSEC | Matches |
---|---|---|---|
_25._tcp.mail.protonmail.ch |
|
valid
|
valid
|
_25._tcp.mail.protonmail.ch |
|
valid
|
— |
_25._tcp.mailsec.protonmail.ch |
|
valid
|
— |
_25._tcp.mailsec.protonmail.ch |
|
valid
|
valid
|