Various reports of all servers tested

Report for december 2013 | Results of the last day | Results of the last week | Results of the last month

TLS versions 467 results

SSL 2 1 0.2%
SSL 3 4 0.9%
TLS 1.0 211 45.2%
TLS 1.1 227 48.6%
TLS 1.2 463 99.1%

Grades 467 results

A 424 90.8%
B 36 7.7%
C 6 1.3%
D 1 0.2%
E 0 0%
F 1 0.2%
Does not penalize untrusted certificates.

RSA key sizes for domain certificates

RSA key size Count
2048 273 62.6%
3072 4 0.9%
4096 159 36.5%

StartTLS

Type Client to server Server to server
Required 273 87.2% 113 73.4%
Allowed 40 12.8% 41 26.6%

Trust

To do authenticated encryption, a certificate needs to be both trusted and valid. Trusted means it is issued by a well-known CA and valid means it is valid for the domain we want to connect to.

Trusted Untrusted
Valid 440 87.1% 45 8.9%
Invalid 8 1.6% 12 2.4%

SASL mechanisms 313 results

Mechanism # times offered before TLS # times offered after TLS
PLAIN 45 14.4% 309 98.7%
SCRAM-SHA-1 44 14.1% 261 83.4%
SCRAM-SHA-1-PLUS 0 0% 171 54.6%
X-OAUTH2 13 4.2% 86 27.5%
DIGEST-MD5 27 8.6% 60 19.2%
SCRAM-SHA-512-PLUS 0 0% 26 8.3%
SCRAM-SHA-512 0 0% 26 8.3%
SCRAM-SHA-256 0 0% 24 7.7%
SCRAM-SHA-256-PLUS 0 0% 24 7.7%
CRAM-MD5 20 6.4% 21 6.7%
JIVE-SHAREDSECRET 5 1.6% 5 1.6%
ANONYMOUS 4 1.3% 4 1.3%
SCRAM-SHA-384-PLUS 0 0% 3 1%
SCRAM-SHA-384 0 0% 3 1%
SCRAM-SHA-224-PLUS 0 0% 2 0.6%
OFCHAT 2 0.6% 2 0.6%
SCRAM-SHA-224 0 0% 2 0.6%
X-GOOGLE-TOKEN 2 0.6% 2 0.6%
OFMEET 1 0.3% 1 0.3%
NTLM 1 0.3% 1 0.3%
LOGIN 0 0% 1 0.3%

Servers supporting SSL 3, but not TLS 1.0 0 results

SSL 3 and TLS 1.0 are very similar, but TLS 1.0 has some small improvements. This table is meant to help judge whether SSL 3 can be disabled by listing the servers that do support SSL 3, but not TLS 1.0.

Target Type When

Servers supporting SSL 2 1 results

SSL 2 is broken and insecure. It is not required for compatibility and servers should disable it.

Target Type When
silper.cz client to server

CAs used Top 30

Name/Organization SHA1 Count
R3 48:50:4E:97:4C:0D:AC:5B:5C:D4:76:C8:20:22:74:B2:4C:8C:71:72 273
R3 A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05 7
Sectigo RSA Domain Validation Secure Server CA 33:E4:E8:08:07:20:4C:2B:61:82:A3:A1:4B:59:1A:CD:25:B5:F0:DB 7
Go Daddy Secure Certificate Authority - G2 27:AC:93:69:FA:F2:52:07:BB:26:27:CE:FA:CC:BE:4E:F9:C3:19:B8 5
Encryption Everywhere DV TLS CA - G1 59:4F:2D:D1:03:52:C2:36:01:38:EE:35:AA:90:6F:97:3A:A3:0B:D3 3
Conversations CA F9:87:0B:66:B3:81:01:6F:E3:F3:F2:C4:B2:9E:3D:64:54:FA:E5:E8 2
Sectigo RSA Organization Validation Secure Server CA 40:CE:F3:04:6C:91:6E:D7:AE:55:7F:60:E7:68:42:82:8B:51:DE:53 2
ZeroSSL RSA Domain Secure Site CA C8:1A:8B:D1:F9:CF:6D:84:C5:25:F3:78:CA:1D:3F:8C:30:77:0E:34 2
Let's Encrypt Authority X3 E6:A3:B4:5B:06:2D:50:9B:33:82:28:2D:19:6E:FE:97:D5:95:6C:CB 2
GlobalSign GCC R3 DV TLS CA 2020 1C:61:0A:0A:87:D4:92:F4:83:22:C2:AF:D3:BE:9B:6A:D3:6B:6B:EE 2
jabber.strategyobject.net 7B:22:EF:BA:C7:B7:34:15:56:36:FD:21:AC:4B:17:BD:13:F9:5F:4C 1
requeijaum.ddns.net C2:85:61:26:FA:4C:FD:34:4D:6C:F8:11:BA:E8:7D:4B:2F:FA:92:89 1
GeoTrust RSA CA 2018 7C:CC:2A:87:E3:94:9F:20:57:2B:18:48:29:80:50:5F:A9:0C:AC:3B 1
GTS CA 1O1 DF:E2:07:0C:79:E7:FF:36:A9:25:FF:A3:27:FF:E3:DE:EC:F8:F9:C2 1
grompe.org.ru 43:DE:21:4C:85:67:B7:00:14:7C:8C:2A:BC:2E:93:14:66:8E:C1:68 1
ns1.openssh.eu B4:9A:1E:63:66:77:7D:D7:17:92:67:6C:11:42:C5:E7:79:CF:23:17 1
beuker.it D2:1B:45:AA:7B:DC:78:B0:1A:9A:4C:DE:94:9D:F1:F5:08:7A:6C:4A 1
localhost 57:E5:22:E7:B8:07:5A:96:57:C8:D9:04:19:34:E8:8E:21:14:40:3F 1
localhost B9:B3:E3:1F:26:CC:BF:DF:1E:78:9D:CA:61:A7:40:C5:FF:9C:E9:83 1
GEANT OV RSA CA 4 C2:82:6E:26:6D:74:05:D3:4E:F8:97:62:63:6A:E4:B3:6E:86:CB:5E 1
jabber.infolan.net.pl D7:8B:8C:1E:DA:61:23:B8:B2:CA:40:07:CD:D0:61:C7:6C:1F:84:1E 1
mtr.co.id A2:ED:52:6E:75:41:C0:A0:BD:15:84:7A:3D:A2:3C:F6:FC:E1:ED:30 1
jabberg.ru FF:63:95:C6:94:D3:62:3E:F2:5B:97:8C:56:39:5F:65:70:C6:56:BF 1
ejabberd.softether.net F0:7B:9D:F7:0F:66:40:5C:2D:62:74:78:F3:B4:7D:80:F5:5C:4A:B0 1
ejabberd 85:19:95:FD:24:F8:35:DB:B0:80:EE:48:BB:CE:AA:35:5D:7E:E8:CF 1
patel.us 1F:09:B2:B3:96:D5:92:A3:D7:80:B1:CB:2A:8B:55:97:25:FE:00:2C 1
jbsoft.softether.net 50:D5:5F:16:2D:67:B1:6E:FE:E4:38:52:77:56:94:12:1A:A9:4A:5B 1
DigiCert SHA2 Extended Validation Server CA 7E:2F:3A:4F:8F:E8:FA:8A:57:30:AE:CA:02:96:96:63:7E:98:6F:3F 1
RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1 9B:D0:8A:58:87:6F:6C:84:9D:B6:BB:99:A8:B1:94:89:26:47:86:0E 1
cPanel, Inc. Certification Authority 76:4D:2F:A5:9E:D1:23:F9:C9:55:70:C4:03:C9:2F:EF:33:8E:A7:45 1

Servers using <2048-bit RSA certificates which expires after 01-01-2014 0 results

As described in the CA/Browser Forum Baseline Requirements, certificates with RSA keys with less than 2048 bits should not be issued with an notAfter date after 31-12-2013. This list lists all certificates which violate that rule.

Target Type When Issuer

Servers with DNSSEC signed SRV records 131 results

Target Type When
04d.co client to server
101.wf client to server
404.city client to server
404.city server to server
5222.de client to server
5222.de server to server
a2x.ch client to server
alainwolf.ch client to server
alpha-labs.net client to server
alpha-labs.net server to server
anoxinon.me client to server
autistici.org client to server
barfoo.eu server to server
bastlerkarre.de client to server
beijinglug.club server to server
biohazardous.de server to server
boese-ban.de client to server
boese-ban.de server to server
c3l.lu client to server
chatsec.nz client to server
chatsec.nz server to server
cookiechat.de client to server
die.one client to server
diskofgrain.xyz client to server
dismail.de client to server
disroot.org client to server
disroot.org server to server
gajim.org client to server
gajim.org server to server
geocoucou.chat client to server
geocoucou.chat server to server
gschwand.eu client to server
habets.dev client to server
habets.dev server to server
hardnode.org client to server
hardnode.org server to server
home.floatblog.de client to server
honigdachse.de client to server
hookipa.net client to server
hookipa.net server to server
hot-chilli.eu client to server
hot-chilli.net client to server
imfreedom.org client to server
im.mikrocon.de client to server
inventati.org client to server
jabb3r.org client to server
jabber.5july.net client to server
jabber.at client to server
jabber.calyxinstitute.org client to server
jabber.calyxinstitute.org server to server
jabber.cat client to server
jabber.de client to server
jabber.de server to server
jabber.dk client to server
jabber.fr client to server
jabber.fr server to server
jabber.hot-chilli.net client to server
jabber.hot-chilli.net server to server
jabber.systemli.org client to server
jabber.tcpreset.net server to server
jabber.unixadm.org client to server
jorsn.eu client to server
kde.org server to server
kdetalk.net client to server
kdetalk.net server to server
kristof.cz client to server
langberi.chat client to server
langberi.chat server to server
leglock.me client to server
leglock.me server to server
lightwitch.org client to server
lingruby.ovh client to server
lingruby.ovh server to server
loranger.xyz client to server
loranger.xyz server to server
magicbroccoli.de client to server
magicbroccoli.de server to server
mailbox.org client to server
mailbox.org server to server
monocles.de client to server
monocles.de server to server
netnod.se client to server
netnod.se server to server
nigma.city client to server
nigma.city server to server
nixnet.xyz client to server
node6.org client to server
noema.org client to server
noema.org server to server
ns1.openssh.eu client to server
oacsys.com client to server
oakforest.in client to server
oakforest.in server to server
ojab.ru client to server
one.com client to server
orencak.sk client to server
orencak.sk server to server
pidginchat.com client to server
pimux.de client to server
pimux.de server to server
raghavgururajan.name client to server
raghavgururajan.name server to server
riseup.net client to server
sandberg.li client to server
sandberg.li server to server
silper.cz client to server
sjaeger.com client to server
sjaeger.com server to server
snopyta.org client to server
snopyta.org server to server
suchat.org client to server
tasartir.cz client to server
tasartir.cz server to server
thesecure.biz client to server
thesecure.biz server to server
trashserver.net client to server
trashserver.net server to server
wasscher.com client to server
wiuwiu.de client to server
wiuwiu.de server to server
x0.chat client to server
x0.chat server to server
xmpp.chat client to server
xmpp.co client to server
xmpp.is client to server
xmpp.is server to server
xmpp.saarland client to server
xmpp.saarland server to server
xmpp.xyz client to server
ycc.fr server to server
zx139.net client to server

Servers with DNSSEC signed DANE records 0 results

Target Type When

Servers with a hidden service 1 results

Target Type When
jabber.calyxinstitute.org client to server

Servers not offering encryption 9 results

Target Type When
cock.li server to server
fin1.comstice.com client to server
gajim.org server to server
mpro.la client to server
netnod.se client to server
netnod.se server to server
thefreaks.club client to server
thefreaks.club server to server
vichatgram.pp.ua client to server

Servers sharing private keys 32 results

Target SHA256(SPKI)
chat-dev.nayapay.com c2s 37:F9:45:40:FC:67:AD:68:4C:22:4C:16:FD:2E:A5:E6:20:B2:2E:F1:E4:3E:59:CE:B7:B6:85:11:5A:91:28:5C
chat.nayapay.com c2s 37:F9:45:40:FC:67:AD:68:4C:22:4C:16:FD:2E:A5:E6:20:B2:2E:F1:E4:3E:59:CE:B7:B6:85:11:5A:91:28:5C
xmpp.chat c2s 3C:00:CF:6E:AD:56:72:EB:63:AB:1B:74:B2:20:D5:66:B9:F9:FB:99:2A:14:E5:E3:46:97:7F:63:04:0E:22:5C
xmpp.co c2s 3C:00:CF:6E:AD:56:72:EB:63:AB:1B:74:B2:20:D5:66:B9:F9:FB:99:2A:14:E5:E3:46:97:7F:63:04:0E:22:5C
xmpp.is c2s 3C:00:CF:6E:AD:56:72:EB:63:AB:1B:74:B2:20:D5:66:B9:F9:FB:99:2A:14:E5:E3:46:97:7F:63:04:0E:22:5C
xmpp.is s2s 3C:00:CF:6E:AD:56:72:EB:63:AB:1B:74:B2:20:D5:66:B9:F9:FB:99:2A:14:E5:E3:46:97:7F:63:04:0E:22:5C
xmpp.xyz c2s 3C:00:CF:6E:AD:56:72:EB:63:AB:1B:74:B2:20:D5:66:B9:F9:FB:99:2A:14:E5:E3:46:97:7F:63:04:0E:22:5C
pix-art.de c2s 44:1A:27:E7:F7:03:47:32:D9:40:6C:AD:2D:61:CF:90:27:CC:67:D0:0A:F0:35:36:02:BE:6F:94:16:D4:DD:C8
pix-art.de s2s 44:1A:27:E7:F7:03:47:32:D9:40:6C:AD:2D:61:CF:90:27:CC:67:D0:0A:F0:35:36:02:BE:6F:94:16:D4:DD:C8
room.pix-art.de s2s 44:1A:27:E7:F7:03:47:32:D9:40:6C:AD:2D:61:CF:90:27:CC:67:D0:0A:F0:35:36:02:BE:6F:94:16:D4:DD:C8
04d.co c2s 4C:28:C8:E6:B2:B8:27:75:32:A0:B4:D5:D3:EA:C6:08:BF:C2:F8:58:4A:7C:17:B0:1C:E7:3D:59:83:FF:08:54
xmpp.04d.co s2s 4C:28:C8:E6:B2:B8:27:75:32:A0:B4:D5:D3:EA:C6:08:BF:C2:F8:58:4A:7C:17:B0:1C:E7:3D:59:83:FF:08:54
1jabber.com c2s 4C:4B:A7:28:AB:16:44:CC:CC:A4:2D:06:8D:F8:E2:35:F2:AB:8D:9E:5E:DE:1D:B4:E7:B1:89:39:85:7B:F9:7E
strong.pm s2s 4C:4B:A7:28:AB:16:44:CC:CC:A4:2D:06:8D:F8:E2:35:F2:AB:8D:9E:5E:DE:1D:B4:E7:B1:89:39:85:7B:F9:7E
verified.pm s2s 4C:4B:A7:28:AB:16:44:CC:CC:A4:2D:06:8D:F8:E2:35:F2:AB:8D:9E:5E:DE:1D:B4:E7:B1:89:39:85:7B:F9:7E
jabberx.io s2s 84:27:BA:9C:DB:C5:BC:40:E9:6F:B7:8E:28:E2:30:23:17:9D:86:24:FC:E2:20:5A:EE:E7:A0:E2:C6:C7:FE:5A
xmppx.io s2s 84:27:BA:9C:DB:C5:BC:40:E9:6F:B7:8E:28:E2:30:23:17:9D:86:24:FC:E2:20:5A:EE:E7:A0:E2:C6:C7:FE:5A
jabber.gg c2s 92:E6:4F:EC:45:03:2A:E7:43:3B:2E:A8:5D:CA:C2:9C:3E:AF:B1:1C:15:F6:1D:BD:89:0C:EC:EF:B8:F9:BB:12
xmpp.gg c2s 92:E6:4F:EC:45:03:2A:E7:43:3B:2E:A8:5D:CA:C2:9C:3E:AF:B1:1C:15:F6:1D:BD:89:0C:EC:EF:B8:F9:BB:12
ec2-65-1-108-135.ap-south-1.compute.amazonaws.com c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
ejabberd.n360.info c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
graphite-official.com c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
martinhome.org.uk c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
saungpulsa.com c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
antichat.ru c2s C3:BE:50:30:7D:BE:42:69:30:D9:C0:25:52:EC:05:39:7A:6F:DF:1D:9A:6A:69:06:FB:36:35:8F:08:1A:0F:8D
google.com c2s C3:BE:50:30:7D:BE:42:69:30:D9:C0:25:52:EC:05:39:7A:6F:DF:1D:9A:6A:69:06:FB:36:35:8F:08:1A:0F:8D
hardnode.org c2s E1:9F:F6:0B:32:46:7D:C7:C3:D9:0A:7C:B8:D7:E2:21:24:C8:EA:60:C1:24:C1:98:4C:D5:D3:BA:3E:2C:1D:81
hardnode.org s2s E1:9F:F6:0B:32:46:7D:C7:C3:D9:0A:7C:B8:D7:E2:21:24:C8:EA:60:C1:24:C1:98:4C:D5:D3:BA:3E:2C:1D:81
sandberg.li c2s E1:9F:F6:0B:32:46:7D:C7:C3:D9:0A:7C:B8:D7:E2:21:24:C8:EA:60:C1:24:C1:98:4C:D5:D3:BA:3E:2C:1D:81
sandberg.li s2s E1:9F:F6:0B:32:46:7D:C7:C3:D9:0A:7C:B8:D7:E2:21:24:C8:EA:60:C1:24:C1:98:4C:D5:D3:BA:3E:2C:1D:81
im.tylerhoang.xyz c2s FB:47:D5:53:3D:56:15:C5:B5:01:2F:45:CD:D6:D3:27:FD:EE:58:B0:A5:2E:5F:99:7E:E1:94:95:C3:03:FB:01
tylerhoang.xyz c2s FB:47:D5:53:3D:56:15:C5:B5:01:2F:45:CD:D6:D3:27:FD:EE:58:B0:A5:2E:5F:99:7E:E1:94:95:C3:03:FB:01