spamfox.de - TLS / STARTTLS Test

Discover if the mail servers for spamfox.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Wed, 19 Feb 2025 21:41:21 +0000

Certificates

Problems found
Protocol

Secure
DANE

Missing

We can not guarantee a secure connection to the mailservers of spamfox.de!

Please contact the operator of spamfox.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/spamfox.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @spamfox.de addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
fox.risser.eu 2a03:4000:5:ff94:d417:b3ff:fe4c:40cd Results incomplete	10		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2025-02-19 11 s
fox.risser.eu 5.45.99.184	10	supported	fox.risserhost.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-02-19 1 s
fox.risserhost.de 2a03:4000:5:ff94:d417:b3ff:fe4c:40cd Results incomplete	20		not checked	DANE missing PFS not checked Heartbleed not checked Weak ciphers not checked		2025-02-19 11 s
fox.risserhost.de 5.45.99.184	20	supported	fox.risserhost.de	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2025-02-19 1 s

Outgoing Mails

We have not received any emails from a @spamfox.de address so far. Test mail delivery

Certificates

First seen at: 2025-02-19

CN=fox.risserhost.de

Certificate chain

fox.risserhost.de
- 2025-05-19 remaining
- 256 bit
- ecdsa-with-SHA384
- Hostname Mismatch

Subject

Common Name (CN)

fox.risserhost.de

Alternative Names

fox.risserhost.de
spamfox.de

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2025-02-18
Not valid after: 2025-05-19

This certifcate has been verified for the following usages:

Digital Signature
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 78:EF:AA:2D:1C:E4:97:F3:2B:67:F0:EA:7C:F7:E0:CD:A2:8D:2B:19:15:2D:44:05:36:63:C1:77:FB:35:06:FC
SHA1: 78:75:9E:9B:A4:E8:66:55:E7:CD:0B:46:F2:B2:42:EA:C3:FC:45:E0

X509v3 extensions

subjectKeyIdentifier

BA:E5:EB:D1:40:AC:A9:F1:0D:51:AB:87:78:58:5C:C8:EF:21:8F:B3

authorityKeyIdentifier

keyid:9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D

authorityInfoAccess

OCSP - URI:http://e5.o.lencr.org
CA Issuers - URI:http://e5.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Feb 18 21:04:10.614 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:1F:E7:30:62:49:74:33:2D:03:84:4A:2B:
A0:65:8D:6E:3A:28:10:CD:5B:C8:91:C6:52:11:AB:1C:
27:90:58:47:02:21:00:EA:78:68:0A:CE:9E:94:60:16:
D3:ED:6F:45:44:7E:E0:19:21:EB:AE:B0:D4:48:3A:27:
78:72:96:34:FC:04:FA
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
Timestamp : Feb 18 21:04:10.698 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:73:90:D7:73:DE:00:C1:06:5E:C0:D3:4A:
89:D9:4F:EB:BB:07:56:6B:03:72:9E:32:50:CF:AD:97:
C2:DB:DE:B1:02:21:00:A5:3A:B9:29:85:99:AB:71:58:
A3:75:1B:AA:8B:8D:69:65:37:DD:A0:41:CF:BE:D0:32:
A1:53:42:C4:C4:F6:D8

SSL check results of spamfox.de