smtp.normhost.net - TLS / STARTTLS Test

Discover if the mail servers for smtp.normhost.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 26 Apr 2024 13:08:23 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of smtp.normhost.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @smtp.normhost.net addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
smtp.normhost.net 109.205.64.59	-	supported	*.normhost.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-04-26 2 s
smtp.normhost.net 109.205.64.58	-	supported	*.normhost.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2024-04-26 2 s

Outgoing Mails

We have not received any emails from a @smtp.normhost.net address so far. Test mail delivery

Certificates

First seen at: 2024-04-26

CN=*.normhost.net

Certificate chain

*.normhost.net
- 2025-04-25 remaining
- 2048 bit
- sha384WithRSAEncryption

Subject

Common Name (CN)

*.normhost.net

Alternative Names

*.normhost.net
normhost.net

Issuer

Country (C)

Organization (O)

Gandi

Common Name (CN)

Gandi RSA Domain Validation Secure Server CA 3

validity period

Not valid before: 2024-04-22
Not valid after: 2025-04-25

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: D6:E8:1D:58:41:F5:11:9B:6D:12:5F:15:9E:19:B6:87:30:29:CF:E6:57:1D:CB:D8:2B:B9:B4:CC:C0:7F:26:3F
SHA1: D5:97:1A:D7:A9:2E:B2:C0:DB:D9:98:A7:02:9A:25:9F:E6:4C:B1:0F

X509v3 extensions

authorityKeyIdentifier

keyid:81:11:92:DE:66:32:A5:B0:5B:33:3D:65:43:85:FC:D4:04:2D:F1:AE

subjectKeyIdentifier

EA:CD:70:96:25:71:20:BC:B8:18:5D:CB:2D:D5:45:2A:8F:A6:C2:89

certificatePolicies

Policy: 1.3.6.1.4.1.6449.1.2.2.26
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1

authorityInfoAccess

CA Issuers - URI:http://crt.sectigo.com/GandiRSADomainValidationSecureServerCA3.crt
OCSP - URI:http://ocsp.sectigo.com

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Apr 22 14:00:36.431 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:C6:30:D4:7A:CE:F0:51:C4:F9:31:0D:
70:9C:89:FF:12:05:31:2D:C2:C7:BC:43:B9:15:9C:24:
A2:D5:D5:AC:80:02:21:00:AA:48:DD:6D:C7:28:6B:58:
3B:D2:95:DB:6A:7D:DD:8C:08:B5:44:44:3E:C1:27:AF:
A9:5A:7A:3A:72:1F:A1:C9
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Apr 22 14:00:36.399 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:A4:80:76:2A:92:48:80:E2:08:20:E0:
6E:E0:19:BD:A0:64:67:27:6B:80:A9:D3:44:F1:BC:ED:
68:3C:6D:8E:41:02:20:2A:00:5B:AF:F4:40:32:12:0F:
8F:A1:49:FE:B1:CB:35:29:43:EC:CB:28:21:88:7C:DA:
E3:90:E1:EB:DD:A9:B3
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Apr 22 14:00:36.399 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:8F:10:53:47:5A:58:B9:AA:ED:35:12:
3F:C8:0F:FC:2F:7F:A9:18:F8:1F:31:FF:B0:8F:FE:6E:
0C:46:43:C3:DA:02:21:00:C5:93:E2:6F:53:E7:52:8C:
C5:F5:2C:2B:18:25:8F:53:33:C2:9E:0D:5F:D3:EE:10:
71:6A:8A:2A:7A:7F:00:66

SSL check results of smtp.normhost.net