SSL-Tools

SSL check results of strato.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for strato.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Mon, 02 Mar 2020 03:09:01 +0000

The mailservers of strato.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @strato.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
post.in.strato.de
192.166.192.189
 100
supported
*.in.strato.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s
post14.in.strato.de
217.74.205.128
 200
supported
*.in.strato.de
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
12 s

Outgoing Mails

We have not received any emails from a @strato.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.in.strato.de,OU=Rechenzentrum,O=Strato AG,L=Berlin,ST=Berlin,C=DE

Certificate chain
Subject
Country (C)
  • DE
State (ST)
  • Berlin
Locality (L)
  • Berlin
Organization (O)
  • Strato AG
Organizational Unit (OU)
  • Rechenzentrum
Common Name (CN)
  • *.in.strato.de
Alternative Names
  • *.in.strato.de
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • Thawte RSA CA 2018
validity period
Not valid before
2019-04-23
Not valid after
2020-04-30
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
27:EE:3E:9B:82:2B:D5:09:BF:5E:E9:7A:DC:DD:AF:2B:E8:36:E3:95:F8:A4:DC:4E:84:EF:37:99:DC:B7:77:81
SHA1
76:9D:CF:01:AF:4E:87:2E:55:2A:5E:14:48:65:FC:00:B1:33:1C:6E
X509v3 extensions
authorityKeyIdentifier
  • keyid:A3:C8:5E:65:54:E5:30:78:C1:05:EA:07:0A:6A:59:CC:B9:FE:DE:5A
subjectKeyIdentifier
  • C1:CF:7C:AF:51:D7:73:F5:EF:81:A0:B5:40:B2:35:94:89:36:6D:78
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.thawte.com/ThawteRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.thawte.com
  • CA Issuers - URI:http://cacerts.thawte.com/ThawteRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Apr 23 15:30:46.191 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:05:8E:43:01:48:9E:6A:E3:27:22:97:19:
  • 6A:7D:B3:78:89:11:28:B9:70:B3:BB:E8:EC:2C:9F:00:
  • BC:4B:51:46:02:21:00:C4:19:0A:AB:B6:9B:5F:55:BA:
  • 4D:AC:D5:81:59:36:71:CE:6E:5D:65:A1:97:4C:AF:CD:
  • 67:78:DD:22:A5:81:09
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Apr 23 15:30:45.278 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:F4:35:68:E9:05:20:CA:C2:08:A1:7B:
  • 63:CB:25:4C:69:6D:3D:1D:F7:5B:F1:A0:D7:E1:59:06:
  • EC:65:66:55:9F:02:21:00:DC:02:96:48:CC:0C:C8:42:
  • 39:6C:33:9C:CB:73:29:A0:50:CA:6A:DD:6D:DE:7C:D2:
  • C9:97:54:B4:DF:56:07:8D