SSL check results of tes.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for tes.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Fri, 29 May 2020 00:30:15 +0000

We can not guarantee a secure connection to the mailservers of tes.de!

Please contact the operator of tes.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/tes.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @tes.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
merkur.tes.de
80.149.188.106
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mx.tes.de.cust.hostedemail.com
216.40.42.4
20
supported
*.hostedemail.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
9 s

Outgoing Mails

We have not received any emails from a @tes.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.hostedemail.com,OU=Operations,O=Tucows Inc,L=Toronto,ST=Ontario,C=CA

Certificate chain
Subject
Country (C)
  • CA
State (ST)
  • Ontario
Locality (L)
  • Toronto
Organization (O)
  • Tucows Inc
Organizational Unit (OU)
  • Operations
Common Name (CN)
  • *.hostedemail.com
Alternative Names
  • *.hostedemail.com
  • hostedemail.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust RSA CA 2018
validity period
Not valid before
2020-03-25
Not valid after
2021-05-24
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
C1:0C:FE:B5:91:EA:3E:43:A6:B1:B5:A9:90:C2:F0:96:DF:6B:9B:4B:F1:83:98:DF:43:6A:8C:3B:E2:1B:A8:F0
SHA1
9E:55:25:87:8D:7A:C5:D2:8B:28:99:C4:15:3C:BC:A6:81:C1:00:FA
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5
subjectKeyIdentifier
  • BC:EB:67:65:6E:44:9A:82:DD:9F:38:D5:D6:E1:D7:B5:2F:47:A2:42
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : A4:B9:09:90:B4:18:58:14:87:BB:13:A2:CC:67:70:0A:
  • 3C:35:98:04:F9:1B:DF:B8:E3:77:CD:0E:C8:0D:DC:10
  • Timestamp : Mar 25 17:55:46.530 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:86:54:56:FB:D3:A1:04:3A:09:26:4F:
  • 02:3B:72:31:62:9C:F3:B5:28:69:26:DB:8C:CF:DF:EE:
  • 6E:69:89:9F:6A:02:21:00:C4:16:82:0C:A8:6F:15:D2:
  • F8:2F:1A:57:A5:2A:7D:07:71:9A:CD:89:AE:12:AB:19:
  • 1D:55:D3:72:2A:82:BA:11
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
  • 37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
  • Timestamp : Mar 25 17:55:46.592 2020 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:29:80:A3:FC:A1:5A:C7:9B:45:4F:89:17:
  • A5:60:37:1A:5E:31:58:CE:4F:7D:76:38:56:3F:42:BC:
  • 2E:32:42:2E:02:20:21:CF:35:A2:01:76:D7:F7:17:BA:
  • BC:D7:08:AE:BD:AE:49:67:7F:7D:13:6E:81:C7:B5:24:
  • 1E:5A:A3:6B:10:1A