SSL-Tools

SSL check results of z-h.de

NEW You can also bulk check multiple servers.

Discover if the mail servers for z-h.de can be reached through a secure connection.

To establish a secure connection a mail server has to offer STARTTLS (SSL), a trustworthy SSL certificate, support for the Diffie-Hellman-Algorithm to guarantee Perfect Forward Secrecy and must not be vulnerable against the Heartbleed attack. Futhermore we recommend using end-to-end encryption with GnuPG.

Summary

JSON Refresh

Report created Sun, 26 Apr 2026 00:30:22 +0000

We can not guarantee a secure connection to the mailservers of z-h.de!

Please contact the operator of z-h.de and ask him or her to solve this problem. This result stays accessible under the following address:

/mailservers/z-h.de

Servers

Incoming Mails

These servers are responsible for incoming mails to @z-h.de addresses.

Hostname / IP address Priority STARTTLS Certificates Protocol
z-h-de.snwlhostedeu.com
173.240.221.30
Results incomplete
3
supported
not checked
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
1 s
exchange.z-h.de
185.188.179.39
 10
supported
AWS-MAIL-2
DANE
missing
PFS
supported
Heartbleed
not vulnerable
Weak ciphers
not found
  • TLSv1.2
  • SSLv3
2 s
awsoutgoing.z-h.de
185.188.179.20
Results incomplete
99 not checked
DANE
missing
PFS
not checked
Heartbleed
not checked
Weak ciphers
not checked
11 s

Outgoing Mails

We have not received any emails from a @z-h.de address so far. Test mail delivery

Certificates

First seen at:

CN=AWS-MAIL-2

Certificate chain
  • AWS-MAIL-2 (Certificate is self-signed.)
    • remaining
    • 2048 bit
    • sha256WithRSAEncryption
    • Hostname Mismatch
    • Unknown Authority
Subject
Common Name (CN)
  • AWS-MAIL-2
Alternative Names
  • AWS-MAIL-2
  • AWS-MAIL-2.zuther.local
Issuer

Certificate is self-signed.

validity period
Not valid before
2026-01-22
Not valid after
2031-01-22
This certifcate has been verified for the following usages:
  • Digital Signature
  • Key Encipherment
  • TLS Web Server Authentication
Fingerprints
SHA256
65:C5:8A:2D:6A:0D:41:AB:C1:E8:B9:6F:7A:FF:79:A5:90:0A:3D:E8:80:77:A4:77:1B:91:FA:4B:AD:F5:05:DB
SHA1
4F:C7:D2:73:65:A1:A8:FA:3B:77:20:B2:23:76:2A:BC:04:2F:C7:96