Weak-Encryption-SMTP MSA/EN
Verification of the encryption strength of the certificate
If the result is positive, there is no need for further action. If the result is negative, please read the following instructions.
| Result positive | Strong hash algorithm is used |
| Result negativ | Weak hash algorithm |
| Description | The message means that your server certificate has a weak hashing algorithm. This can potentially cause it to be falsified and is displayed as insecure in many mail programs. |
| Background | Server certificates provide more security on the Internet and serve to verify (authenticity) the identity of servers. A certificate is issued by official, trustworthy institutions. A certificate is not forgeable. In normal life, a certificate is comparable to an identity card or a notarial certification. Similar to a passport, certificates also have a certain validity period. Certificates thus ensure secure data exchange and form an important basis of trust for operators, e.g. of online shops. |
| Consequence | In the worst case, a weak hashing algorithm can cause attackers to create a fake certificate for your servers and impersonate your servers. This means that a server can impersonate another server. Criminals may be able to access your customers' personal data such as passwords or credit card information. |
| Solution/Tips | If weak hash algorithm is reported, you should install a new certificate with a secure hash function. How to get a secure certificate you can read here: Install_Certificate (German only). |