unit0.net - TLS / STARTTLS Test

Discover if the mail servers for unit0.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Thu, 25 Apr 2024 12:25:06 +0000

Certificates

Trustworthy
Protocol

Secure
DANE

Missing

The mailservers of unit0.net can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @unit0.net addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
mx1.zeyel.net 2a01:4f8:1c1c:80c8::1	10	supported	mx1.zeyel.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-04-25 1 s
mx1.zeyel.net 157.90.239.46	10	supported	mx1.zeyel.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-04-25 1 s
mx2.zeyel.net 2a01:4f8:c010:7b2a::1	10	supported	mx2.zeyel.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-04-25 2 s
mx2.zeyel.net 168.119.58.167	10	supported	mx2.zeyel.net	DANE missing PFS supported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 ~~SSLv3~~	2024-04-25 1 s

Outgoing Mails

We have not received any emails from a @unit0.net address so far. Test mail delivery

Certificates

First seen at: 2024-04-25

CN=mx1.zeyel.net

Certificate chain

mx1.zeyel.net
- 2024-05-27 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mx1.zeyel.net

Alternative Names

mx1.zeyel.net

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-02-27
Not valid after: 2024-05-27

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 33:75:63:C5:F7:2B:B7:35:CF:68:B2:F2:06:B8:84:9C:DC:E1:67:E3:FF:51:B1:5A:14:52:38:86:C6:C9:33:A0
SHA1: B3:12:D7:52:D2:D1:73:FE:C2:2D:E6:27:EF:D1:70:5D:F4:20:0E:B2

X509v3 extensions

subjectKeyIdentifier

F1:D4:71:55:74:C6:28:47:A0:83:D1:0E:59:B6:EC:DA:AC:CC:06:1F

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Feb 27 07:34:00.421 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:B7:A6:70:F8:05:1F:9B:46:69:60:43:
19:1E:AC:CA:CA:B4:09:0B:4A:92:30:92:B2:37:65:78:
4E:A6:A4:5A:EF:02:20:0B:82:10:E6:2A:2E:F8:D5:6C:
05:4B:F2:0A:45:33:DC:68:8B:6B:48:35:44:C2:FC:C4:
06:A5:4E:61:EC:33:AD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
Timestamp : Feb 27 07:34:00.443 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:2E:B4:81:4F:4E:D5:5C:9F:9D:F9:44:7D:
8C:75:34:24:3A:95:BF:AE:47:14:78:F8:C3:54:29:D7:
A6:17:C3:5B:02:21:00:C9:64:27:0A:B0:B3:95:F5:D6:
91:CC:72:6D:E7:15:49:DE:37:F0:D7:85:D2:93:87:0A:
DF:7C:FC:73:3E:70:12

First seen at: 2024-04-25

CN=mx2.zeyel.net

Certificate chain

mx2.zeyel.net
- 2024-07-04 remaining
- 2048 bit
- sha256WithRSAEncryption

Subject

Common Name (CN)

mx2.zeyel.net

Alternative Names

mx2.zeyel.net
ns2.zeyel.net

Issuer

Country (C)

Organization (O)

Let's Encrypt

Common Name (CN)

validity period

Not valid before: 2024-04-05
Not valid after: 2024-07-04

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: 08:75:E2:7A:D3:C3:68:16:F4:42:04:3D:82:7F:A2:BA:79:7B:DB:C2:51:52:01:51:82:57:AE:B0:DF:1B:76:BA
SHA1: 35:12:33:F1:3C:91:10:22:B3:BF:5A:FA:47:DA:CB:C3:43:0E:3F:4F

X509v3 extensions

subjectKeyIdentifier

19:D3:63:9E:D9:F0:EB:16:53:0D:3F:B1:1D:39:05:E5:7D:CB:02:76

authorityKeyIdentifier

keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6

authorityInfoAccess

OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/

certificatePolicies

Policy: 2.23.140.1.2.1

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
Timestamp : Apr 5 23:44:33.196 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:82:67:AB:95:3E:BE:BB:AC:94:93:B1:
7E:71:D8:3A:E1:8E:D2:8E:8D:6E:DA:7A:D1:41:AA:6A:
CE:CB:DD:7B:13:02:21:00:B3:71:FD:47:70:14:03:3D:
DB:3A:35:BB:F3:12:BC:0F:E9:03:B1:55:AA:B3:B3:CE:
FB:DB:37:2F:29:41:D2:61
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Apr 5 23:44:33.147 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:45:B6:66:1C:CA:67:D5:8F:F3:89:84:27:
14:C4:33:3B:6A:9C:E3:D2:87:8F:B7:36:20:A4:99:7A:
DA:24:67:AC:02:20:79:0F:D2:67:07:E6:9A:0A:68:01:
7B:ED:FF:81:ED:E9:A1:C6:CF:3E:DB:47:D2:7E:18:A6:
B4:74:97:68:EF:81

SSL check results of unit0.net

Summary

The mailservers of unit0.net can be reached through a secure connection.

Servers

Incoming Mails

Outgoing Mails

Certificates

CN=mx1.zeyel.net

CN=mx2.zeyel.net