SSL check results of yanka.co.za

NEW You can also bulk check multiple servers.

Discover if the mail servers for yanka.co.za can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

Report created Wed, 11 May 2022 09:49:14 +0000

We can not guarantee a secure connection to the mailservers of yanka.co.za!

Please contact the operator of yanka.co.za and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/yanka.co.za

Servers

Incoming Mails

These servers are responsible for incoming mails to @yanka.co.za addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
mxc01.yanka.co.za
154.0.162.154
10
supported
mxc*.yanka.co.za
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
10 s
mxc13.yanka.co.za
38.242.241.138
Results incomplete
30
unsupported
not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s
mxc12.yanka.co.za
102.22.83.85
120
supported
mxc*.yanka.co.za
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • TLSv1.1
  • TLSv1.0
  • SSLv3
11 s

Outgoing Mails

We have not received any emails from a @yanka.co.za address so far. Test mail delivery

Certificates

First seen at:

CN=mxc*.yanka.co.za

Certificate chain
  • mxc*.yanka.co.za
    • remaining
    • 2048 bit
    • sha512WithRSAEncryption
    • Hostname Mismatch

      • int-YAN-DC01-CA (Certificate is self-signed.)
        • remaining
        • 2048 bit
        • sha512WithRSAEncryption
        • Unknown Authority

Subject
Common Name (CN)
  • mxc*.yanka.co.za
Common Name is not included in Alternative Names
Alternative Names
  • mail.int.hmouton.co.za
  • smtp.int.hmouton.co.za
Issuer
Domain Component (DC)
  • za
  • co
  • yanka
  • int
Common Name (CN)
  • int-YAN-DC01-CA
validity period
Not valid before
2020-04-15
Not valid after
2022-06-09
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • Data Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
E6:54:7E:AD:B6:CD:44:4E:1B:11:95:A3:2C:94:9F:68:98:9E:C6:89:D1:8F:9E:AE:E3:6B:A3:43:E9:0B:90:2F
SHA1
CE:32:14:9B:58:67:B1:85:63:A3:D8:11:9D:0C:FF:2A:17:69:7C:3F
X509v3 extensions
1_3_6_1_4_1_311_21_7
  • 0/.'+.....7.....8...G...*.......>.s...c...b..g...
1_3_6_1_4_1_311_21_10
  • 0.0
  • ..+.......
subjectKeyIdentifier
  • 0A:83:90:DB:4B:EF:C9:6E:47:3B:FC:46:EC:44:B4:1E:24:58:1C:62
authorityKeyIdentifier
  • keyid:5D:7E:12:17:82:35:AB:E7:34:B7:65:B7:FF:52:52:3B:E5:31:FC:06
crlDistributionPoints
  • Full Name:
  • URI:ldap:///CN=int-YAN-DC01-CA,CN=YAN-DC01,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=int,DC=yanka,DC=co,DC=za?certificateRevocationList?base?objectClass=cRLDistributionPoint
  • URI:http://yan-dc01.int.yanka.co.za/CertEnroll/int-YAN-DC01-CA.crl
  • URI:file://YAN-DC01.int.yanka.co.za/CertEnroll/int-YAN-DC01-CA.crl
  • URI:http://autodiscover.yanka.co.za/CertEnroll/int-YAN-DC01-CA.crl
authorityInfoAccess
  • CA Issuers - URI:ldap:///CN=int-YAN-DC01-CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=int,DC=yanka,DC=co,DC=za?cACertificate?base?objectClass=certificationAuthority
  • OCSP - URI:http://yan-dc01.int.yanka.co.za/CertEnroll/YAN-DC01.int.yanka.co.za_int-YAN-DC01-CA.crt
  • OCSP - URI:http://autodiscover.yanka.co.za/CertEnroll/YAN-DC01.int.yanka.co.za_int-YAN-DC01-CA.crt