yeah.net - TLS / STARTTLS Test

Discover if the mail servers for yeah.net can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Fri, 04 Sep 2020 01:33:36 +0000

Certificates

Problems found
Protocol

Problems found
DANE

Missing

The mailservers of yeah.net can be reached through an encrypted connection.

However, we found problems that may affect the security.

Servers

Incoming Mails

These servers are responsible for incoming mails to @yeah.net addresses.

Hostname / IP address	Priority	STARTTLS	Certificates	Protocol
yeahmx01.mxmail.netease.com 2407:ae80:100:1000:123:58:178:178	10	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 42 s
yeahmx01.mxmail.netease.com 123.58.177.220	10	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 22 s
yeahmx01.mxmail.netease.com 123.58.177.213	10	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 22 s
yeahmx01.mxmail.netease.com 123.58.177.214	10	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 23 s
yeahmx00.mxmail.netease.com 2407:ae80:100:1000:123:58:178:178	50	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 31 s
yeahmx00.mxmail.netease.com 123.58.177.220	50	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 24 s
yeahmx00.mxmail.netease.com 123.58.177.214	50	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 22 s
yeahmx00.mxmail.netease.com 123.58.177.213	50	supported	*.yeah.net	DANE missing PFS unsupported Heartbleed not vulnerable Weak ciphers not found	TLSv1.2 TLSv1.1 TLSv1.0 ~~SSLv3~~	2020-09-04 22 s

Outgoing Mails

We have received emails from these servers with @yeah.net sender addresses. Test mail delivery

Host	TLS Version & Cipher
unknown (117.92.203.94)	Insecure - not encrypted!	2021-08-17
unknown (180.105.129.29)	Insecure - not encrypted!	2021-08-10
unknown (114.237.154.212)	Insecure - not encrypted!	2021-08-03
unknown (114.237.155.138)	Insecure - not encrypted!	2021-07-24
unknown (114.237.154.90)	Insecure - not encrypted!	2021-07-22
unknown (14.156.203.209)	Insecure - not encrypted!	2021-07-21
unknown (113.83.127.79)	Insecure - not encrypted!	2021-07-16
unknown (114.237.155.174)	Insecure - not encrypted!	2021-07-12
unknown (114.237.155.74)	Insecure - not encrypted!	2021-07-10
unknown (114.237.154.148)	Insecure - not encrypted!	2021-07-06
unknown (114.237.154.180)	Insecure - not encrypted!	2021-07-01
unknown (114.237.155.230)	Insecure - not encrypted!	2021-06-26
unknown (113.83.127.172)	Insecure - not encrypted!	2021-06-25
unknown (114.237.155.135)	Insecure - not encrypted!	2021-06-21
unknown (114.237.155.41)	Insecure - not encrypted!	2021-06-15
unknown (183.31.103.194)	Insecure - not encrypted!	2021-06-13
unknown (49.88.226.152)	Insecure - not encrypted!	2021-06-09
unknown (180.105.128.235)	Insecure - not encrypted!	2021-06-04
unknown (114.237.154.49)	Insecure - not encrypted!	2021-06-02
unknown (14.120.35.88)	Insecure - not encrypted!	2021-05-23
unknown (114.237.155.119)	Insecure - not encrypted!	2021-05-21
unknown (14.156.203.220)	Insecure - not encrypted!	2021-05-20
unknown (117.92.203.148)	Insecure - not encrypted!	2021-05-15
unknown (114.237.188.60)	Insecure - not encrypted!	2021-05-11
unknown (114.237.109.238)	Insecure - not encrypted!	2021-05-07
unknown (49.88.226.36)	Insecure - not encrypted!	2021-05-01
unknown (114.237.109.146)	Insecure - not encrypted!	2021-04-29
unknown (117.92.203.237)	Insecure - not encrypted!	2021-04-23
unknown (14.156.202.79)	Insecure - not encrypted!	2021-04-18
unknown (114.237.109.219)	Insecure - not encrypted!	2021-04-07
unknown (14.156.201.39)	Insecure - not encrypted!	2021-04-05
unknown (114.237.188.18)	Insecure - not encrypted!	2021-04-02
unknown (14.156.203.44)	Insecure - not encrypted!	2021-03-30
unknown (114.237.109.228)	Insecure - not encrypted!	2021-03-26
unknown (14.156.201.5)	Insecure - not encrypted!	2021-03-19
unknown (117.92.202.180)	Insecure - not encrypted!	2021-03-16
unknown (14.120.34.238)	Insecure - not encrypted!	2021-03-16
unknown (14.156.201.252)	Insecure - not encrypted!	2021-03-14
unknown (114.237.188.26)	Insecure - not encrypted!	2021-03-11
unknown (59.33.192.160)	Insecure - not encrypted!	2021-03-07
unknown (14.156.200.6)	Insecure - not encrypted!	2021-03-04
unknown (114.237.109.193)	Insecure - not encrypted!	2021-03-03
unknown (114.237.109.208)	Insecure - not encrypted!	2021-02-22
unknown (14.120.34.56)	Insecure - not encrypted!	2021-02-18
unknown (14.120.34.44)	Insecure - not encrypted!	2021-02-13
unknown (106.110.165.147)	Insecure - not encrypted!	2021-02-09
unknown (14.120.35.30)	Insecure - not encrypted!	2021-02-08
unknown (14.156.203.219)	Insecure - not encrypted!	2021-02-01
unknown (49.88.66.117)	Insecure - not encrypted!	2021-01-28
unknown (14.156.203.191)	Insecure - not encrypted!	2021-01-23
unknown (14.120.35.211)	Insecure - not encrypted!	2021-01-19
unknown (114.237.109.9)	Insecure - not encrypted!	2021-01-13
unknown (114.237.134.139)	Insecure - not encrypted!	2021-01-10
unknown (14.156.201.224)	Insecure - not encrypted!	2021-01-08
unknown (14.156.202.173)	Insecure - not encrypted!	2020-12-27
unknown (49.88.65.128)	Insecure - not encrypted!	2020-12-24
unknown (49.88.66.73)	Insecure - not encrypted!	2020-12-18
unknown (14.120.34.242)	Insecure - not encrypted!	2020-12-12
unknown (106.110.167.128)	Insecure - not encrypted!	2020-12-07
unknown (14.156.203.64)	Insecure - not encrypted!	2020-11-29
unknown (106.110.165.42)	Insecure - not encrypted!	2020-11-19
unknown (14.120.34.52)	Insecure - not encrypted!	2020-11-12
unknown (14.120.35.84)	Insecure - not encrypted!	2020-11-07
unknown (14.156.201.106)	Insecure - not encrypted!	2020-11-05
unknown (14.120.34.92)	Insecure - not encrypted!	2020-11-01
unknown (180.127.110.107)	Insecure - not encrypted!	2020-10-31
unknown (14.120.33.91)	Insecure - not encrypted!	2020-10-28
unknown (106.110.165.21)	Insecure - not encrypted!	2020-10-06
unknown (114.237.188.149)	Insecure - not encrypted!	2020-09-30
unknown (222.187.118.51)	Insecure - not encrypted!	2020-09-27
unknown (101.36.118.171)	Insecure - not encrypted!	2020-08-31
unknown (180.123.118.223)	Insecure - not encrypted!	2020-07-19
unknown (112.84.95.21)	Insecure - not encrypted!	2020-07-04
unknown (49.88.160.45)	Insecure - not encrypted!	2020-06-30
unknown (112.84.94.21)	Insecure - not encrypted!	2020-06-27
unknown (223.242.229.81)	Insecure - not encrypted!	2020-06-25
unknown (49.80.169.213)	Insecure - not encrypted!	2020-06-19
unknown (49.68.144.208)	Insecure - not encrypted!	2020-06-18
unknown (122.192.207.181)	Insecure - not encrypted!	2020-06-12
unknown (114.237.188.245)	Insecure - not encrypted!	2020-06-10
unknown (124.113.219.129)	Insecure - not encrypted!	2020-05-31
unknown (114.237.109.4)	Insecure - not encrypted!	2020-05-26
unknown (113.77.225.27)	Insecure - not encrypted!	2020-05-26
unknown (114.237.109.19)	Insecure - not encrypted!	2020-05-26
unknown (180.127.110.156)	Insecure - not encrypted!	2020-05-25
unknown (122.192.207.35)	Insecure - not encrypted!	2020-05-18
unknown (180.124.160.52)	Insecure - not encrypted!	2020-05-16
unknown (114.235.216.125)	Insecure - not encrypted!	2020-05-06
unknown (117.87.27.195)	Insecure - not encrypted!	2020-05-05
unknown (180.124.74.93)	Insecure - not encrypted!	2020-05-02
unknown (114.237.109.81)	Insecure - not encrypted!	2020-05-01
unknown (180.124.14.201)	Insecure - not encrypted!	2020-04-30
unknown (114.237.109.33)	Insecure - not encrypted!	2020-04-24
unknown (180.124.146.178)	Insecure - not encrypted!	2020-04-21
unknown (49.68.145.90)	Insecure - not encrypted!	2020-04-18
unknown (61.141.77.78)	Insecure - not encrypted!	2020-04-18
unknown (180.124.195.153)	Insecure - not encrypted!	2020-04-17
unknown (112.84.94.190)	Insecure - not encrypted!	2020-04-15
unknown (113.77.219.49)	Insecure - not encrypted!	2020-04-14
unknown (58.255.67.68)	Insecure - not encrypted!	2020-04-11
unknown (106.111.118.94)	Insecure - not encrypted!	2020-04-02
unknown (112.84.60.77)	Insecure - not encrypted!	2020-04-01
unknown (61.141.77.94)	Insecure - not encrypted!	2020-04-01
unknown (223.73.108.68)	Insecure - not encrypted!	2020-03-30
unknown (180.123.49.201)	Insecure - not encrypted!	2020-03-30
unknown (61.141.77.221)	Insecure - not encrypted!	2020-03-25
unknown (106.111.118.21)	Insecure - not encrypted!	2020-03-22
unknown (180.123.50.145)	Insecure - not encrypted!	2020-03-17
unknown (114.237.109.102)	Insecure - not encrypted!	2020-03-16
unknown (112.84.61.211)	Insecure - not encrypted!	2020-03-16
unknown (112.84.60.236)	Insecure - not encrypted!	2020-03-10
unknown (180.124.250.193)	Insecure - not encrypted!	2020-03-01
unknown (114.234.252.146)	Insecure - not encrypted!	2020-01-30
unknown (180.123.226.180)	Insecure - not encrypted!	2020-02-09

Certificates

First seen at: 2020-05-26

CN=*.yeah.net,OU=IT Dept.,O=NetEase (Hangzhou) Network Co.\, Ltd,L=Hangzhou,ST=Zhejiang,C=CN

Certificate chain

*.yeah.net
- 2022-03-05 remaining
- 2048 bit
- sha256WithRSAEncryption
- Hostname Mismatch

Subject

Country (C)

State (ST)

Zhejiang

Locality (L)

Hangzhou

Organization (O)

NetEase (Hangzhou) Network Co., Ltd

Organizational Unit (OU)

IT Dept.

Common Name (CN)

*.yeah.net

Alternative Names

*.yeah.net
yeah.net

Issuer

Country (C)

Organization (O)

DigiCert Inc

Organizational Unit (OU)

www.digicert.com

Common Name (CN)

GeoTrust CN RSA CA G1

validity period

Not valid before: 2020-01-07
Not valid after: 2022-03-05

This certifcate has been verified for the following usages:

Digital Signature
Key Encipherment
TLS Web Server Authentication
TLS Web Client Authentication

Fingerprints

SHA256: F9:CE:3A:B6:20:CE:11:8F:95:E7:C7:2E:18:20:3C:F9:BF:F9:75:71:84:E2:82:BE:5A:BE:1B:D8:C6:31:7A:FB
SHA1: C0:07:E4:16:27:08:C7:6D:BE:85:10:9C:DC:B6:7F:EC:B7:9F:5F:90

X509v3 extensions

authorityKeyIdentifier

keyid:91:9F:5E:31:15:AE:10:9F:AD:60:C1:F7:C1:CC:AA:48:34:2F:0C:26

subjectKeyIdentifier

FA:B3:2D:10:C2:52:D2:FC:59:73:67:92:0C:87:0B:D5:D5:45:68:21

crlDistributionPoints

Full Name:
URI:http://crl3.digicert.com/GeoTrustCNRSACAG1.crl
Full Name:
URI:http://crl4.digicert.com/GeoTrustCNRSACAG1.crl

certificatePolicies

Policy: 2.16.840.1.114412.1.1
CPS: https://www.digicert.com/CPS
Policy: 2.23.140.1.2.2

authorityInfoAccess

OCSP - URI:http://ocsp.dcocsp.cn
CA Issuers - URI:http://crl.digicert-cn.com/GeoTrustCNRSACAG1.crt

ct_precert_scts

Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:
38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85
Timestamp : Jan 7 05:08:32.742 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:BD:1D:9C:12:51:73:3B:BF:BF:68:63:
05:FF:43:A7:19:FF:B9:77:AF:46:D2:07:1B:B2:3E:2F:
1F:8C:9C:D3:A3:02:21:00:A1:05:C2:9A:ED:44:B3:E5:
22:EE:6D:D4:A7:E4:EC:0C:C1:9F:34:E3:04:5D:A1:17:
A9:F1:3F:FA:2B:F6:46:D2
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:
8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F
Timestamp : Jan 7 05:08:32.934 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:D9:7C:93:45:32:2A:01:0F:C9:08:87:
6A:F0:C3:C0:45:4D:69:A8:9B:A3:21:48:7A:45:12:82:
40:F7:D4:79:98:02:20:22:F5:1F:6F:C3:4B:7E:39:EF:
28:36:C4:DB:7E:D6:7F:A9:15:05:8F:C9:EF:69:DF:F3:
51:D2:A2:D6:CC:C3:B3
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 56:14:06:9A:2F:D7:C2:EC:D3:F5:E1:BD:44:B2:3E:C7:
46:76:B9:BC:99:11:5C:C0:EF:94:98:55:D6:89:D0:DD
Timestamp : Jan 7 05:08:32.964 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:21:12:C8:A5:79:C8:DE:3E:91:07:4C:0F:
7C:B4:CC:DA:53:09:68:D4:D0:69:BC:05:3B:13:9C:B6:
BF:43:33:8D:02:20:25:EE:EC:FC:7E:D4:74:EF:DC:F1:
C9:67:45:F1:38:D6:12:82:77:B1:39:09:96:DE:38:7B:
A0:77:26:C6:4D:D2

SSL check results of yeah.net