Add domains MX-hosted by webmail.headsite.se (expired certificate)

vdukhovni commented 6 years ago

anderssons.tk. MX 10 webmail.headsite.se.
restaurangvitahasten.se. IN MX 10 webmail.headsite.se.
vtu.se. IN MX 10 webmail.headsite.se.
madeleinekarlssondans.se. IN MX 10 webmail.headsite.se. 
elbelysningnacka.se. IN MX 10 webmail.headsite.se.

The above domains use webmail.headsite.se as their MX host, but it has "2 1 1" TLSA records and an expired certificate:

  webmail.headsite.se[83.241.149.220]: cert-expired
    TLS = TLS12 with ECDHE-RSA-AES256GCM-SHA384
    name = autodiscover.anderssons.tk
    name = autodiscover.elbelysningnacka.se
    name = autodiscover.madeleinekarlssondans.se
    name = autodiscover.restaurangvitahasten.se
    name = autodiscover.vtu.se
    name = webmail.headsite.se
    depth = 0
      Issuer CommonName = Let's Encrypt Authority X3
      Issuer Organization = Let's Encrypt
      notBefore = 2017-12-23T22:00:39Z
      notAfter = 2018-03-23T22:00:39Z
      Subject CommonName = autodiscover.anderssons.tk

Note, FWIW headsite.se is fine, its MX host mail.headsite.se has an unexpired certificate.

desh-se commented 6 years ago

Thanks! I've contacted info@headsite.se.

desh-se commented 6 years ago

Contacted support@headsite.se as well, responded immediately saying they should fix it.

danefail / list

Add domains MX-hosted by webmail.headsite.se (expired certificate) #34