SSL check results of tackaberry.net

NEW You can also bulk check multiple servers.

Discover if the mail servers for tackaberry.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Mon, 23 Sep 2024 00:30:39 +0000

We can not guarantee a secure connection to the mailservers of tackaberry.net!

Please contact the operator of tackaberry.net and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/tackaberry.net

Servers

Incoming Mails

These servers are responsible for incoming mails to @tackaberry.net addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
guarddog.tackaberry.net
24.247.130.67
10
supported
guarddog.tackaberry.net
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s
mx1.urandom.ca
2600:1f18:2542:aa00::25
Results incomplete
15
unsupported
not checked
DANE
errors
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mx1.urandom.ca
3.233.255.108
15
supported
*.urandom.ca
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
18 s

Outgoing Mails

We have not received any emails from a @tackaberry.net address so far. Test mail delivery

Certificates

First seen at:

CN=guarddog.tackaberry.net

Certificate chain
  • guarddog.tackaberry.net
    • remaining
    • 4096 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • guarddog.tackaberry.net
Alternative Names
  • guarddog.tackaberry.net
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-07-31
Not valid after
2024-10-29
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
15:6A:C0:84:CB:9F:4C:A9:55:95:22:60:15:70:7E:B8:26:AD:C0:FD:EC:C5:80:C7:E5:4E:06:CC:1F:C4:56:3C
SHA1
43:F6:46:B8:6C:F9:C6:49:9E:85:1F:20:A9:10:39:E7:F7:D3:74:2F
X509v3 extensions
subjectKeyIdentifier
  • 69:A3:20:DD:84:9A:3C:C1:7C:3C:5E:FA:A6:72:BC:8B:DF:05:23:19
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
  • ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
  • Timestamp : Jul 31 05:15:03.490 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:83:F1:44:19:F2:40:81:E1:85:8B:BE:
  • 6E:77:B5:9D:D5:2F:46:CE:10:0C:8D:15:A3:D2:47:A9:
  • EE:B0:A8:5A:5F:02:20:4D:70:E1:61:4B:65:D3:74:EF:
  • 7B:27:BE:1E:B9:6C:08:15:A0:42:75:3B:A4:33:05:04:
  • 59:1F:05:88:5D:1F:9C
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
  • B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
  • Timestamp : Jul 31 05:15:03.567 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:4F:EA:D2:8F:CE:2B:F6:BD:43:35:DA:CA:
  • BA:77:D5:89:7F:75:AF:A6:86:FB:1A:0A:E6:1B:31:55:
  • 02:58:E4:AA:02:20:09:0D:3F:DF:4D:B5:AE:33:06:8D:
  • 57:B1:0F:DC:C5:81:57:F8:5A:F2:2F:E6:D7:79:D0:7E:
  • EF:11:CE:AC:70:BB
First seen at:

CN=*.urandom.ca

Certificate chain
  • *.urandom.ca
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption

      • R10
        • remaining
        • 2048 bit
        • sha256WithRSAEncryption

          • ISRG Root X1 (Certificate is self-signed.)
            • remaining
            • 4096 bit
            • sha256WithRSAEncryption

Subject
Common Name (CN)
  • *.urandom.ca
Alternative Names
  • *.urandom.ca
  • urandom.ca
Issuer
Country (C)
  • US
Organization (O)
  • Let's Encrypt
Common Name (CN)
  • R10
validity period
Not valid before
2024-08-26
Not valid after
2024-11-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
DD:E5:CA:78:9D:53:24:61:F1:5C:AD:67:1A:0F:2E:A7:DA:F3:64:D5:46:56:A3:C1:D0:8D:BA:CB:A9:76:D5:16
SHA1
28:DF:AD:5B:1B:EC:64:92:87:2B:C7:2A:DC:40:CC:01:BB:FD:3D:57
X509v3 extensions
subjectKeyIdentifier
  • D0:86:4D:96:EC:3E:E2:85:DB:53:BF:13:06:A3:1D:CF:DC:F3:C6:2C
authorityKeyIdentifier
  • keyid:BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess
  • OCSP - URI:http://r10.o.lencr.org
  • CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies
  • Policy: 2.23.140.1.2.1
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
  • 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
  • Timestamp : Aug 26 18:35:59.342 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:3F:A1:8F:7F:91:37:8D:D3:9B:2F:AF:75:
  • AB:F5:8B:85:6E:E3:17:50:7F:F7:B9:16:58:C9:97:12:
  • 66:98:DB:14:02:21:00:C1:E1:3E:A4:C8:E8:58:0C:D6:
  • 77:60:E6:67:20:62:DA:4A:27:44:22:16:EB:55:96:BC:
  • 7E:F6:8F:0B:72:50:1E
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
  • 83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
  • Timestamp : Aug 26 18:36:01.439 2024 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:5D:59:FB:CE:50:61:BF:A5:68:17:3C:08:
  • 54:A1:51:38:5A:3C:A2:63:39:E8:29:94:D6:64:1F:7A:
  • 53:44:5D:B8:02:21:00:A0:C2:5E:27:84:90:38:F2:CC:
  • 24:38:54:81:3F:FF:AE:1D:37:23:6C:97:7C:8A:D6:17:
  • 9D:76:F2:35:06:96:6B

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mx1.urandom.ca
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mx1.urandom.ca
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.urandom.ca
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.urandom.ca
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid
_25._tcp.mx1.urandom.ca
  • DANE-TA: Trust Anchor Assertion
  • Use subject public key
  • SHA-256 Hash
valid