SSL-Tools

SSL check results of samario.eu

NEW You can also bulk check multiple servers.

Discover if the mail servers for samario.eu can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 10 May 2024 00:04:29 +0000

The mailservers of samario.eu can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @samario.eu addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
medusa.samario.eu
2003:cd:ef32:1100:211:32ff:feb4:2521
 2
supported
medusa.samario.eu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
2 s
medusa.samario.eu
79.225.188.211
 2
supported
medusa.samario.eu
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • SSLv3
2 s
mx01.mail-redirect.de
2a01:4f8:1c17:52e9::1
 10
supported
mail-redirect.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
7 s
mx01.mail-redirect.de
88.99.82.73
 10
supported
mail-redirect.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
7 s
mx02.mail-redirect.eu
2a01:4f8:c2c:9ff::1
 10
supported
mail-redirect.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
7 s
mx02.mail-redirect.eu
159.69.107.183
 10
supported
mail-redirect.de
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
7 s

Outgoing Mails

We have received emails from these servers with @samario.eu sender addresses. Test mail delivery

Host TLS Version & Cipher
mout.kundenserver.de (212.227.17.13)
TLSv1.3 TLS_AES_256_GCM_SHA384

Certificates

First seen at:

CN=medusa.samario.eu

Certificate chain
  • medusa.samario.eu
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • medusa.samario.eu
Alternative Names
  • dockerreg.samario.eu
  • mail.samario.eu
  • medusa.samario.eu
  • wg.samario.eu
  • www.samario.de
  • www.samario.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-12
Not valid after
2024-07-11
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
AA:33:37:10:9E:6A:1D:3A:B5:8E:9E:C9:70:FA:B0:B3:79:D1:DF:AB:29:4F:E3:9A:8E:58:7A:4A:71:42:3C:A0
SHA1
A5:38:90:B7:B6:60:6C:51:98:87:23:73:F8:09:9E:33:93:25:86:14
X509v3 extensions
subjectKeyIdentifier
  • 31:86:2B:3E:B7:4B:7F:F2:15:06:37:01:B7:D1:01:DE:3E:32:00:05
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
  • 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
  • Timestamp : Apr 12 23:59:56.747 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:73:B5:58:BF:E3:3D:2B:98:5A:CB:F4:75:
  • 31:48:32:BC:07:6F:D8:45:61:CC:54:36:8E:6B:0C:90:
  • B5:14:1A:B3:02:20:1C:68:92:8E:CE:F6:0D:CD:9C:39:
  • 3A:C2:3A:D8:09:A7:9E:C9:41:36:3D:A8:FD:A8:98:99:
  • 5A:28:19:B7:17:08
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
  • 83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
  • Timestamp : Apr 12 23:59:56.748 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:C4:9B:A6:95:59:6F:F6:F5:59:5E:FE:
  • 17:88:D6:EE:5A:39:28:DE:58:58:8F:E3:00:B3:92:A5:
  • A4:4A:F5:06:8C:02:21:00:FE:EC:92:FC:63:B5:18:66:
  • 04:14:E3:39:78:5A:FB:62:7D:3E:48:AE:A8:49:06:A5:
  • B0:AD:C1:77:DB:57:51:8F
First seen at:

CN=mail-redirect.de

Certificate chain
  • mail-redirect.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail-redirect.de
Alternative Names
  • *.mail-redirect.de
  • *.mail-redirect.eu
  • mail-redirect.de
  • mail-redirect.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-28
Not valid after
2024-07-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
3D:B3:BC:2D:12:3D:AC:89:16:B1:67:84:63:4F:D7:25:F6:03:DE:AB:41:41:38:9D:96:32:30:DC:BE:84:D3:D4
SHA1
BE:4F:9C:12:8C:15:E4:EB:2B:5A:4E:B0:9A:36:3D:B9:0D:C9:A2:8D
X509v3 extensions
subjectKeyIdentifier
  • AB:AC:DB:46:2D:35:E7:B8:9D:1A:BB:79:AF:FC:91:9F:55:A8:3A:8A
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
  • 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
  • Timestamp : Apr 28 22:42:44.189 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:44:45:28:AA:9C:33:2F:1C:98:8E:B7:7F:
  • EC:73:B3:A7:3F:0B:42:C6:79:DC:B8:69:CC:E1:EF:65:
  • 76:14:CB:D0:02:20:0A:57:84:26:82:F2:6A:E0:95:83:
  • 5E:34:7E:79:39:D1:39:D8:17:CD:7D:4D:89:00:22:42:
  • 9E:33:21:32:D0:40
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Apr 28 22:42:44.199 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:95:65:F9:68:4E:BD:70:76:B7:53:B7:
  • 2E:6E:44:94:1A:F4:32:C8:5C:A7:93:48:62:16:32:6E:
  • 10:EE:00:90:64:02:20:4D:CF:9D:FD:97:11:95:9F:25:
  • 8D:AF:91:F1:8E:84:A1:4C:F7:7D:CA:60:FE:F7:7E:7C:
  • E3:EB:15:03:A1:07:7E
First seen at:

CN=mail-redirect.de

Certificate chain
  • mail-redirect.de
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption
      • R3
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption
          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption
Subject
Common Name (CN)
  • mail-redirect.de
Alternative Names
  • *.mail-redirect.de
  • *.mail-redirect.eu
  • mail-redirect.de
  • mail-redirect.eu
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R3
validity period
Not valid before
2024-04-28
Not valid after
2024-07-27
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
1D:4F:44:CE:7F:74:DB:77:5A:C0:87:46:18:6D:24:CF:5D:1A:2E:37:61:34:8D:BB:D6:D3:A0:C5:27:C7:42:BD
SHA1
6A:AB:6B:62:10:5D:FC:B6:75:F5:73:6A:C1:DA:4A:96:1F:CA:DE:04
X509v3 extensions
subjectKeyIdentifier
  • AB:AC:DB:46:2D:35:E7:B8:9D:1A:BB:79:AF:FC:91:9F:55:A8:3A:8A
authorityKeyIdentifier
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
authorityInfoAccess
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Apr 28 22:55:05.931 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F3:0A:58:4C:C3:AE:3A:D2:61:1D:F2:
  • 79:C5:28:36:41:82:78:A0:13:1E:2D:99:41:E6:F0:66:
  • CC:E6:8F:01:8B:02:21:00:D7:C2:4A:5C:CA:D5:A7:F5:
  • 64:C0:C7:39:60:A8:10:3C:8B:78:40:63:A2:61:06:C1:
  • F9:8F:CD:FB:AE:D0:60:6D
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Apr 28 22:55:06.008 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:0C:64:A3:E9:3A:F0:9A:05:03:0F:63:C3:
  • AD:31:E7:29:03:81:6E:48:EF:86:BB:BD:CE:CD:F4:F8:
  • A2:5A:B6:48:02:20:6A:97:26:69:1A:56:57:4A:D2:27:
  • 27:8C:2A:C5:EC:DB:CB:C2:A1:6C:82:13:A3:33:C9:9F:
  • 41:57:CE:D8:1D:D2

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx01.mail-redirect.de
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx02.mail-redirect.eu
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid