SSL-Tools

SSL check results of strato.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for strato.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 15 Jul 2021 12:57:20 +0000

The mailservers of strato.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @strato.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
post.in.strato.de
192.166.192.189
 100
supported
*.in.strato.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
post14.in.strato.de
217.74.205.128
 200
supported
*.in.strato.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s

Outgoing Mails

We have received emails from these servers with @strato.de sender addresses. Test mail delivery

Host TLS Version & Cipher
mail-ej1-x62f.google.com (IPv6:2a00:1450:4864:20::62f)
TLSv1.3 TLS_AES_128_GCM_SHA256
mail-wr1-x435.google.com (IPv6:2a00:1450:4864:20::435)
TLSv1.3 TLS_AES_128_GCM_SHA256

Certificates

First seen at:

CN=*.in.strato.de,O=Strato AG,L=Berlin,ST=Berlin,C=DE

Certificate chain
Subject
Country (C)
  • DE
State (ST)
  • Berlin
Locality (L)
  • Berlin
Organization (O)
  • Strato AG
Common Name (CN)
  • *.in.strato.de
Alternative Names
  • *.in.strato.de
  • IN.STRATO.DE
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust RSA CA 2018
validity period
Not valid before
2021-03-01
Not valid after
2022-03-31
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
33:8A:D5:50:D5:D2:76:DF:4C:D5:AF:64:F7:71:1B:CE:C8:EB:3D:C9:AC:80:C2:83:3E:F9:15:17:33:93:39:5A
SHA1
E6:F3:82:09:E7:50:DD:C3:FD:2A:6F:EE:DD:C2:EF:B4:C3:0A:57:F1
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5
subjectKeyIdentifier
  • C1:CF:7C:AF:51:D7:73:F5:EF:81:A0:B5:40:B2:35:94:89:36:6D:78
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl
certificatePolicies
  • Policy: 2.23.140.1.2.2
  • CPS: http://www.digicert.com/CPS
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Mar 1 06:43:03.337 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:F6:00:E3:B3:34:DF:93:5E:9F:75:51:
  • D5:73:25:4C:38:84:FD:61:13:EC:4E:FE:70:1B:92:BA:
  • 2C:61:7D:3A:F3:02:20:63:14:B0:B9:CD:32:0C:5C:00:
  • 73:89:7C:1E:1B:1D:C8:A5:EC:64:A2:20:0D:C6:72:4A:
  • 42:F0:9B:25:E6:61:4F
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 22:45:45:07:59:55:24:56:96:3F:A1:2F:F1:F7:6D:86:
  • E0:23:26:63:AD:C0:4B:7F:5D:C6:83:5C:6E:E2:0F:02
  • Timestamp : Mar 1 06:43:03.286 2021 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:7E:87:5D:37:0B:EF:F2:8B:23:26:E9:91:
  • B6:38:57:E2:81:A4:92:F7:B7:89:F8:CE:47:3C:BF:D5:
  • E1:8B:45:E7:02:20:53:AE:12:D5:6A:BB:68:E8:92:F9:
  • 83:D9:84:0C:93:DA:E2:8F:58:BF:67:6A:55:1F:42:FD:
  • 7A:2E:DD:01:61:63