SSL check results of tes.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for tes.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Sat, 30 Nov 2019 13:30:42 +0000

We can not guarantee a secure connection to the mailservers of tes.de!

Please contact the operator of tes.de and ask him or her to solve this problem. This result stays accessible under the following address:

https://ssl-tools.net/mailservers/tes.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @tes.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
merkur.tes.de
80.149.188.106
Results incomplete
10
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
1 s
mx.tes.de.cust.hostedemail.com
216.40.42.4
20
supported
*.hostedemail.com
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
13 s

Outgoing Mails

We have not received any emails from a @tes.de address so far. Test mail delivery

Certificates

First seen at:

CN=*.hostedemail.com,OU=Operations,O=Tucows Inc,L=Toronto,ST=Ontario,C=CA

Certificate chain
Subject
Country (C)
  • CA
State (ST)
  • Ontario
Locality (L)
  • Toronto
Organization (O)
  • Tucows Inc
Organizational Unit (OU)
  • Operations
Common Name (CN)
  • *.hostedemail.com
Alternative Names
  • *.hostedemail.com
  • hostedemail.com
Issuer
Country (C)
  • US
Organization (O)
  • DigiCert Inc
Organizational Unit (OU)
  • www.digicert.com
Common Name (CN)
  • GeoTrust RSA CA 2018
validity period
Not valid before
2019-03-04
Not valid after
2020-05-02
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
3C:B4:63:97:E1:E4:75:DF:A9:A4:38:68:6A:9A:44:7B:86:2E:BA:A6:36:D0:12:4A:1B:AC:9D:A1:7E:B1:2C:7C
SHA1
0D:6C:C7:AC:1F:A2:C2:42:E3:85:AC:00:D2:BE:A2:A6:61:B0:8B:B3
X509v3 extensions
authorityKeyIdentifier
  • keyid:90:58:FF:B0:9C:75:A8:51:54:77:B1:ED:F2:A3:43:16:38:9E:6C:C5
subjectKeyIdentifier
  • BC:EB:67:65:6E:44:9A:82:DD:9F:38:D5:D6:E1:D7:B5:2F:47:A2:42
crlDistributionPoints
  • Full Name:
  • URI:http://cdp.geotrust.com/GeoTrustRSACA2018.crl
certificatePolicies
  • Policy: 2.16.840.1.114412.1.1
  • CPS: https://www.digicert.com/CPS
  • Policy: 2.23.140.1.2.2
authorityInfoAccess
  • OCSP - URI:http://status.geotrust.com
  • CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustRSACA2018.crt
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
  • 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
  • Timestamp : Mar 4 18:13:48.904 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:6E:41:D5:D6:92:E9:2A:49:C8:AF:28:D8:
  • 62:AA:4E:CE:B3:9E:B8:C7:E7:0A:AC:BB:9D:33:C4:71:
  • 27:25:F8:54:02:20:5E:2F:E3:71:79:82:51:4A:27:A5:
  • F6:99:92:0C:73:66:E2:15:CF:29:1B:82:08:C4:15:CA:
  • 8A:B8:71:3A:0C:12
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Mar 4 18:13:49.218 2019 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:46:02:21:00:8B:B1:52:C3:3E:67:5F:7A:BA:33:25:
  • 91:8D:75:ED:31:1B:8C:43:31:B4:EA:84:FE:88:C2:4F:
  • 33:F9:42:17:6C:02:21:00:AF:07:A6:B0:51:DA:E3:EB:
  • 6B:D7:56:7A:D2:AA:14:AD:F1:6F:62:7E:FE:11:EB:3D:
  • A2:AA:B8:37:83:95:AD:00