SSL check results of sasse.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for sasse.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Fri, 12 Oct 2018 12:34:05 +0000

The mailservers of sasse.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @sasse.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mail01.sasse.de
212.91.225.181
10
supported
mail01.sasse.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12.0 s
mail02.sasse.de
212.91.225.182
20
supported
mail02.sasse.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12.0 s

Outgoing Mails

We have not received any emails from a @sasse.de address so far. Test mail delivery

Certificates

First seen at:

mail02.sasse.de

Certificate chain
Subject
Organizational Unit (OU)
  • Domain Control Validated
Common Name (CN)
  • mail02.sasse.de
Alternative Names
  • mail02.sasse.de
  • www.mail02.sasse.de
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • COMODO CA Limited
Common Name (CN)
  • COMODO RSA Domain Validation Secure Server CA
validity period
Not valid before
2017-05-31
Not valid after
2020-08-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
2E:A3:0D:8E:EE:B2:77:EF:8D:1D:A2:39:87:9C:8A:4A:F1:2C:26:64:91:9E:04:68:0A:FE:7E:02:89:34:F1:87
SHA1
6B:94:F0:A1:AC:BA:D2:C3:A1:9D:02:9B:A3:70:35:F3:9F:B2:A7:AD
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:AF:6A:3A:94:5A:0B:D8:90:EA:12:56:73:DF:43:B4:3A:28:DA:E7
subjectKeyIdentifier
  • 5F:78:90:31:B8:FB:14:0D:C0:F6:A6:E6:1F:29:56:0F:C1:83:C0:AD
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://secure.comodo.com/CPS
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.comodoca.com
First seen at:

mail01.sasse.de

Certificate chain
Subject
Organizational Unit (OU)
  • Domain Control Validated
Common Name (CN)
  • mail01.sasse.de
Alternative Names
  • mail01.sasse.de
  • www.mail01.sasse.de
Issuer
Country (C)
  • GB
State (ST)
  • Greater Manchester
Locality (L)
  • Salford
Organization (O)
  • COMODO CA Limited
Common Name (CN)
  • COMODO RSA Domain Validation Secure Server CA
validity period
Not valid before
2017-05-31
Not valid after
2020-08-28
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
25:96:69:05:53:BB:1F:35:0C:50:77:51:5C:35:0C:05:98:87:68:2F:69:6F:46:3C:41:DC:20:E9:19:9A:B2:D2
SHA1
0D:32:14:3D:11:AF:89:30:B1:CE:C8:1F:55:BC:DC:A3:C8:9C:39:73
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:AF:6A:3A:94:5A:0B:D8:90:EA:12:56:73:DF:43:B4:3A:28:DA:E7
subjectKeyIdentifier
  • 41:00:C4:21:C8:0A:B9:FD:74:4D:F2:58:A1:D0:34:9C:76:11:8E:D6
certificatePolicies
  • Policy: 1.3.6.1.4.1.6449.1.2.2.7
  • CPS: https://secure.comodo.com/CPS
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl
authorityInfoAccess
  • CA Issuers - URI:http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt
  • OCSP - URI:http://ocsp.comodoca.com