SSL-Tools

SSL check results of rah.li

NEW You can also bulk check multiple servers.

Discover if the mail servers for rah.li can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 18 Apr 2024 21:06:11 +0000

We can not guarantee a secure connection to the mailservers of rah.li!

Please contact the operator of rah.li and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/rah.li

Servers

Incoming Mails

These servers are responsible for incoming mails to @rah.li addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail.rah.li
217.29.146.14
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
4 s
mail2.rah.li
46.151.206.71
 100
supported
mail2.rah.li
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
supported
  • ECDHE_RSA_WITH_RC4_128_SHA
  • SSL_RSA_EXPORT_WITH_RC4_40_MD5
  • SSL_RSA_WITH_RC4_128_SHA
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s

Outgoing Mails

We have not received any emails from a @rah.li address so far. Test mail delivery

Certificates

First seen at:

CN=mail2.rah.li

Certificate chain
  • mail2.rah.li (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha1WithRSAEncryption
    • Unknown Authority
Subject
Common Name (CN)
  • mail2.rah.li
Issuer

Certificate is self-signed.

validity period
Not valid before
2015-03-27
Not valid after
2025-03-24
Fingerprints
SHA256
73:56:FC:5C:D1:46:03:03:D7:1C:1E:2F:D6:C9:D5:A9:F2:9D:15:D0:53:3F:B2:EE:F6:9F:B5:7B:C6:C4:14:B9
SHA1
83:80:E6:99:0C:A8:69:E1:C7:F8:2E:FF:5A:98:20:DA:0F:20:5A:CB