TLS: Check TLS version

Question

TLS: Check TLS version

Closed this issue 7 months ago · 3 comments

Is your feature request related to a problem? Please describe.
mxcheck should check the TLS version and mark v1.2 as yellow and v1.3+ as green

Answer 1 · 2023-10-13T01:01:24.000Z

if you want traffic light system, may I suggest

red for unencrypted
yellow for STARTTLS and TLS <1.2
green for >=1.2

also, if multiple versions are available, warnings for weak versions should still be shown.

also, really great project, thanks for doing this!

Answer 2 · 2024-01-30T11:34:18.000Z

Working on this in in branch tlsversioncheck. The checks works on smtpd 25/tcp and submissions 587/tcp and 465/tcp, based on the results of the port scan.

Answer 3 · 2024-03-15T15:02:22.000Z

A check is implemented for the highest version of TLS, for TLS used with smtps and STARTTLS seperately.