SSL check results of unitybox.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for unitybox.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Fri, 03 Jul 2020 13:59:59 +0000

The mailservers of unitybox.de can be reached through a secure connection.

Servers

Incoming Mails

These servers are responsible for incoming mails to @unitybox.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mxin.unity-mail.com
213.46.255.72
10
supported
mxin.unity-mail.com
DANE
valid
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
2 s

Outgoing Mails

We have not received any emails from a @unitybox.de address so far. Test mail delivery

Certificates

First seen at:

CN=mxin.unity-mail.com,OU=Domain Control Validated

Certificate chain
Subject
Organizational Unit (OU)
  • Domain Control Validated
Common Name (CN)
  • mxin.unity-mail.com
Alternative Names
  • mxin.unity-mail.com
Issuer
Country (C)
  • BE
Organization (O)
  • GlobalSign nv-sa
Common Name (CN)
  • AlphaSSL CA - SHA256 - G2
validity period
Not valid before
2018-12-05
Not valid after
2021-03-05
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
  • TLS Web Client Authentication
Fingerprints
SHA256
18:7C:F6:37:E4:14:C4:92:D6:A1:73:78:62:10:25:E2:20:DD:AB:7D:02:45:F8:1D:C9:E0:0A:DD:5D:41:70:D1
SHA1
DF:78:31:03:04:8F:11:C1:6D:7F:92:42:05:7C:5F:B1:C2:F9:66:81
X509v3 extensions
authorityInfoAccess
  • CA Issuers - URI:http://secure2.alphassl.com/cacert/gsalphasha2g2r1.crt
  • OCSP - URI:http://ocsp2.globalsign.com/gsalphasha2g2
certificatePolicies
  • Policy: 1.3.6.1.4.1.4146.1.10.10
  • CPS: https://www.globalsign.com/repository/
  • Policy: 2.23.140.1.2.1
crlDistributionPoints
  • Full Name:
  • URI:http://crl2.alphassl.com/gs/gsalphasha2g2.crl
subjectKeyIdentifier
  • FB:96:02:92:E8:55:70:5F:96:4C:2B:C9:F4:3B:2B:7D:AB:C2:01:7C
authorityKeyIdentifier
  • keyid:F5:CD:D5:3C:08:50:F9:6A:4F:3A:B7:97:DA:56:83:E6:69:D2:68:F7
ct_precert_scts
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 55:81:D4:C2:16:90:36:01:4A:EA:0B:9B:57:3C:53:F0:
  • C0:E4:38:78:70:25:08:17:2F:A3:AA:1D:07:13:D3:0C
  • Timestamp : Dec 5 14:49:59.961 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:53:14:60:D4:A5:E0:3C:D1:4E:F2:9E:64:
  • 05:CD:F6:2A:2F:9C:9B:33:81:F9:FB:C5:4B:1D:21:5F:
  • 99:3E:8A:99:02:21:00:81:0F:5F:A5:0C:9A:F4:7E:95:
  • 2E:A0:36:E2:93:A5:9B:B6:9E:3D:17:0D:01:07:89:D8:
  • 73:9D:FF:AE:A5:0D:FA
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
  • 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
  • Timestamp : Dec 5 14:49:59.970 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:20:3F:4E:BA:87:08:C9:98:A6:6D:9F:CA:1B:
  • 49:A1:7B:18:EB:11:46:CF:FC:C2:27:35:46:30:27:B3:
  • 43:C8:EA:C3:02:21:00:86:9F:A0:CF:48:29:42:F5:E2:
  • F1:C7:04:F4:BA:36:D5:AC:0B:EF:83:DE:D1:3C:23:FB:
  • 01:BD:B2:45:7E:52:97
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : EE:4B:BD:B7:75:CE:60:BA:E1:42:69:1F:AB:E1:9E:66:
  • A3:0F:7E:5F:B0:72:D8:83:00:C4:7B:89:7A:A8:FD:CB
  • Timestamp : Dec 5 14:50:00.090 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:82:9A:FE:6B:6A:B9:C3:AE:EC:8A:E9:
  • 3D:DC:61:05:58:68:DC:96:96:9A:1C:E2:01:7A:B4:99:
  • 27:60:A4:24:AE:02:20:3D:65:D2:C7:85:96:D4:C8:F4:
  • 6E:80:E8:C4:56:5C:84:FA:E5:F1:68:09:7B:A6:CF:45:
  • 5A:C9:E8:BE:C8:DB:DD
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Dec 5 14:49:59.998 2018 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:99:2A:32:9A:AC:AA:85:9A:C2:6E:63:
  • E7:B3:78:C6:11:58:18:C6:04:4F:0B:4B:36:56:4C:5D:
  • CA:6B:B7:62:33:02:20:25:0F:EA:7E:F3:9B:C4:3A:24:
  • 77:7E:FB:57:50:76:FC:14:68:AE:E7:44:CE:EC:FB:6F:
  • 3A:17:3A:7A:46:9F:47

DANE

DNS-based Authentication of Named Entities (DANE) is a protocol to allow X.509 certificates to be bound to DNS using TLSA records and DNSSEC.

Name Options DNSSEC Matches
_25._tcp.mxin.unity-mail.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid
valid
_25._tcp.mxin.unity-mail.com
  • DANE-EE: Domain Issued Certificate
  • Use subject public key
  • SHA-256 Hash
valid