Various reports of all servers tested

Report for december 2013 | Results of the last day | Results of the last week | Results of the last month

TLS versions 556 results

SSL 2 0 0%
SSL 3 6 1.1%
TLS 1.0 322 57.9%
TLS 1.1 350 62.9%
TLS 1.2 551 99.1%

Grades 556 results

A 477 85.8%
B 65 11.7%
C 15 2.7%
D 0 0%
E 0 0%
F 0 0%
Does not penalize untrusted certificates.

RSA key sizes for domain certificates

RSA key size Count
1024 1 0.2%
2048 302 54.1%
3072 7 1.3%
4096 248 44.4%

StartTLS

Type Client to server Server to server
Required 292 82% 134 67%
Allowed 64 18% 66 33%

Trust

To do authenticated encryption, a certificate needs to be both trusted and valid. Trusted means it is issued by a well-known CA and valid means it is valid for the domain we want to connect to.

Trusted Untrusted
Valid 508 84.1% 70 11.6%
Invalid 7 1.2% 19 3.1%

SASL mechanisms 356 results

Mechanism # times offered before TLS # times offered after TLS
PLAIN 69 19.4% 346 97.2%
SCRAM-SHA-1 57 16% 290 81.5%
SCRAM-SHA-1-PLUS 0 0% 123 34.6%
X-OAUTH2 22 6.2% 99 27.8%
DIGEST-MD5 44 12.4% 83 23.3%
CRAM-MD5 27 7.6% 28 7.9%
ANONYMOUS 4 1.1% 6 1.7%
JIVE-SHAREDSECRET 2 0.6% 2 0.6%
EXTERNAL 0 0% 2 0.6%
X-GOOGLE-TOKEN 2 0.6% 2 0.6%
OFMEET 1 0.3% 1 0.3%
NTLM 1 0.3% 1 0.3%
SCRAM-SHA-256 0 0% 1 0.3%
SCRAM-SHA-256-PLUS 0 0% 1 0.3%
SCRAM-SHA-384 0 0% 1 0.3%
SCRAM-SHA-384-PLUS 0 0% 1 0.3%
SCRAM-SHA-512 0 0% 1 0.3%
SCRAM-SHA-512-PLUS 0 0% 1 0.3%
WEBEX-TOKEN 0 0% 1 0.3%
LOGIN 0 0% 1 0.3%
PLAIN_PC 1 0.3% 1 0.3%

Servers supporting SSL 3, but not TLS 1.0 0 results

SSL 3 and TLS 1.0 are very similar, but TLS 1.0 has some small improvements. This table is meant to help judge whether SSL 3 can be disabled by listing the servers that do support SSL 3, but not TLS 1.0.

Target Type When

Servers supporting SSL 2 0 results

SSL 2 is broken and insecure. It is not required for compatibility and servers should disable it.

Target Type When

CAs used Top 30

Name/Organization SHA1 Count
Let's Encrypt Authority X3 E6:A3:B4:5B:06:2D:50:9B:33:82:28:2D:19:6E:FE:97:D5:95:6C:CB 288
Let's Encrypt Authority X3 1B:23:67:53:54:FC:AD:90:11:9D:88:07:50:15:EA:17:AD:D5:27:D8 11
COMODO RSA Domain Validation Secure Server CA 33:9C:DD:57:CF:D5:B1:41:16:9B:61:5F:F3:14:28:78:2D:1D:A6:39 11
Sectigo RSA Domain Validation Secure Server CA 33:E4:E8:08:07:20:4C:2B:61:82:A3:A1:4B:59:1A:CD:25:B5:F0:DB 7
Go Daddy Secure Certificate Authority - G2 27:AC:93:69:FA:F2:52:07:BB:26:27:CE:FA:CC:BE:4E:F9:C3:19:B8 4
Gandi Standard SSL CA 2 24:71:06:A4:05:B2:88:A4:6E:70:A0:26:27:17:16:2D:09:03:E7:34 3
DFN-Verein Global Issuing CA C9:DC:B0:47:AC:8C:5F:09:05:ED:77:52:8C:BD:4B:84:D9:46:3C:45 3
RapidSSL RSA CA 2018 98:C6:A8:DC:88:79:63:BA:3C:F9:C2:73:1C:BD:D3:F7:DE:05:AC:2D 3
Google Internet Authority G3 EE:AC:BD:0C:B4:52:81:95:77:91:1E:1E:62:03:DB:26:2F:84:A3:18 3
DigiCert SHA2 Secure Server CA 1F:B8:6B:11:68:EC:74:31:54:06:2E:8C:9C:C5:B1:71:A4:B7:CC:B4 2
Thawte RSA CA 2018 4D:EE:A7:06:0D:80:BA:BF:16:43:B4:E0:F0:10:4C:82:99:50:75:B7 2
TERENA SSL CA 3 77:B9:9B:B2:BD:75:22:E1:7E:C0:99:EA:71:77:51:6F:27:78:7C:AD 2
GTS CA 1O1 DF:E2:07:0C:79:E7:FF:36:A9:25:FF:A3:27:FF:E3:DE:EC:F8:F9:C2 2
Unzane Intermediate Certificate Authority (RSA) 81:6E:CA:9F:EC:73:AB:C3:23:C3:9B:9E:1F:2A:34:D3:45:43:D7:AC 2
StartCom Class 1 DV Server CA 39:8E:19:36:63:9B:A5:20:6D:F5:17:9B:FB:B7:01:09:33:96:94:00 2
GlobalSign Extended Validation CA - SHA256 - G3 60:23:19:2F:E7:B5:9D:27:89:13:0A:9F:E4:09:4F:9B:55:70:D4:A2 2
Entrust Certification Authority - L1M CC:13:66:95:63:90:65:FA:B4:70:74:D2:8C:55:31:4C:66:07:7E:90 2
AlphaSSL CA - SHA256 - G2 4C:27:43:17:17:56:5A:3A:07:F3:E6:D0:03:2C:42:58:94:9C:F9:EC 2
Certum Domain Validation CA SHA2 FF:9C:EB:13:C8:3F:15:B8:00:E6:EF:F9:87:B2:C7:2E:01:B4:B3:20 2
silverteam.pro A4:74:C2:C8:D5:DD:4A:1B:B6:2B:99:FA:30:58:93:15:0A:C5:D8:CD 1
Matthieu Saulnier Root CA 09:75:86:4A:20:36:0F:94:A1:39:11:4A:D3:2E:8E:BE:30:F2:24:29 1
jabber.banuareload.com 60:89:FA:C7:76:C6:83:49:00:0F:AD:2E:E3:2B:26:5E:45:77:6E:6B 1
numeritech.fr DF:2F:B5:AA:B3:6D:12:47:C2:31:29:51:A5:1D:27:70:D0:7C:49:15 1
chat.zenia.pro 28:9A:33:0F:7F:19:18:50:D6:0F:4B:35:D6:03:24:EE:70:46:E2:B8 1
DarkEngine B1:BD:DC:81:8B:E4:36:2F:4A:A8:36:B6:D9:5A:CA:0B:43:56:C3:B4 1
ejabberd E9:A2:65:D0:1C:EA:42:88:58:51:1F:5D:78:B4:19:77:33:EE:00:ED 1
thawte SSL CA - G2 2E:A7:1C:36:7D:17:8C:84:3F:D2:1D:B4:FD:B6:30:BA:54:A2:0D:C5 1
im.cyborgnetwork.com 37:9D:19:3C:EC:7D:C6:A9:F6:1B:29:74:CB:71:DB:62:75:B7:9A:BB 1
ejabberd F6:FD:80:16:F2:AF:87:CB:2D:74:9D:84:E0:B8:D5:9F:8B:C1:82:CA 1
Starfield Secure Certificate Authority - G2 7E:DC:37:6D:CF:D4:5E:6D:DF:08:2C:16:0D:F6:AC:21:83:5B:95:D4 1

Servers using <2048-bit RSA certificates which expires after 01-01-2014 0 results

As described in the CA/Browser Forum Baseline Requirements, certificates with RSA keys with less than 2048 bits should not be issued with an notAfter date after 31-12-2013. This list lists all certificates which violate that rule.

Target Type When Issuer

Servers with DNSSEC signed SRV records 145 results

Target Type When
404.city client to server
404.city server to server
4ept.net client to server
5222.de client to server
5222.de server to server
a3.pm client to server
acc.umu.se server to server
aco.net client to server
adb-centralen.se client to server
alternanet.fr client to server
babai.ru client to server
babai.ru server to server
barfoo.eu client to server
bka.li client to server
blug.moe client to server
bouwhuis.io client to server
bouwhuis.io server to server
brevsprekk.net client to server
calyxinstitute.org client to server
debian.org client to server
debian.org server to server
dismail.de client to server
dismail.de server to server
disroot.org server to server
draugr.de client to server
draugr.de server to server
dwimlabs.net server to server
eckmul.net client to server
eckmul.net server to server
emaks.net client to server
ernal.net client to server
faui2k11.de client to server
gajim.org client to server
gajim.org server to server
gleisnetze.de client to server
gleisnetze.de server to server
hillmeier.net client to server
hillmeier.net server to server
honigdachse.de client to server
hot-chilli.net client to server
iluha.de client to server
iluha.de server to server
im.cyberjinh.fr client to server
im.cyberjinh.fr server to server
invy.at client to server
invy.at server to server
jabb3r.de client to server
jabb3r.org client to server
jabb3r.org server to server
jabber.at client to server
jabber.at server to server
jabber.briehl.de client to server
jabber.briehl.de server to server
jabber.calyxinstitute.org client to server
jabber.cat client to server
jabber.cat server to server
jabber.chaostreffbern.ch client to server
jabber.cheetah85.ovh client to server
jabber.cheetah85.ovh server to server
jabber.de client to server
jabber.de server to server
jabber.firc.de client to server
jabber.firc.de server to server
jabber.freenet.de client to server
jabber.freenet.de server to server
jabber.hot-chilli.net client to server
jabber.no-sense.net client to server
jabber.no-sense.net server to server
jabberpl.org client to server
jabber.systemli.org client to server
jabber.tcpreset.net client to server
jabber.uk client to server
jabber.zone client to server
jorsn.eu client to server
juick.com server to server
k8n.de server to server
lightwitch.org client to server
linux.monster client to server
loskiq.com client to server
loskiq.com server to server
magicbroccoli.de client to server
magicbroccoli.de server to server
mailbox.org client to server
mdosch.de server to server
mikroschrott.de server to server
mindspl.at client to server
mytum.de server to server
niel.site client to server
notcom.org client to server
notcom.org server to server
nwschat.weather.gov client to server
ofus.world client to server
okaris.de client to server
okaris.de server to server
onna.be client to server
onna.be server to server
openvoipalliance.org client to server
openvoipalliance.org server to server
pimux.de client to server
pimux.de server to server
plastyc.cz client to server
plastyc.cz server to server
priv-host.pl client to server
priv-host.pl server to server
renf.us client to server
riseup.net client to server
serafean.cz client to server
serafean.cz server to server
shreddox.eu server to server
simplewire.de client to server
snopyta.org server to server
stusta.mhn.de server to server
thesecure.biz client to server
thesecure.biz server to server
toxol.eu client to server
trashserver.net client to server
trashserver.net server to server
tributh.net server to server
ubuntu-jabber.net client to server
univers-libre.net client to server
unix-ag.uni-kl.de client to server
unix-ag.uni-kl.de server to server
unzane.com client to server
unzane.com server to server
valiant.ninja client to server
valiant.ninja server to server
waigel.eu client to server
waigel.eu server to server
wensley.org.uk client to server
wiuwiu.de client to server
wiuwiu.de server to server
xmpp.cc client to server
xmpp.chat client to server
xmpp.co client to server
xmpp.dk client to server
xmpp.is client to server
xmpp.lt client to server
xmpp.lt server to server
xmpp.pm client to server
xmpp.pm server to server
xmpp.xyz client to server
xmpp.xyz server to server
zash.se server to server
zeroanarchy.com client to server
zeroanarchy.com server to server

Servers with DNSSEC signed DANE records 0 results

Target Type When

Servers with a hidden service 3 results

Target Type When
germanyt366sirdc.onion client to server
ijeeynrc6x2uy5ob.onion client to server
jabber.calyxinstitute.org client to server

Servers not offering encryption 5 results

Target Type When
cisco.com server to server
dev.bazar.network client to server
peacock.mithrai.com client to server
trxroket.com client to server
vovel.ru client to server

Servers sharing private keys 45 results

Target SHA256(SPKI)
chat.cluxia.eu s2s 07:46:B5:34:DA:BF:96:F0:1E:BB:51:1E:57:5F:E2:F9:64:F4:B1:48:D8:39:B7:3B:86:FF:FA:06:AF:34:5E:3D
cluxia.eu c2s 07:46:B5:34:DA:BF:96:F0:1E:BB:51:1E:57:5F:E2:F9:64:F4:B1:48:D8:39:B7:3B:86:FF:FA:06:AF:34:5E:3D
cluxia.eu s2s 07:46:B5:34:DA:BF:96:F0:1E:BB:51:1E:57:5F:E2:F9:64:F4:B1:48:D8:39:B7:3B:86:FF:FA:06:AF:34:5E:3D
conference.igniterealtime.org s2s 36:5B:76:D7:43:8B:FE:09:37:C0:47:B0:9C:1F:46:37:06:62:15:0B:AE:91:94:9F:B6:9F:03:9D:16:AC:DE:A7
igniterealtime.org c2s 36:5B:76:D7:43:8B:FE:09:37:C0:47:B0:9C:1F:46:37:06:62:15:0B:AE:91:94:9F:B6:9F:03:9D:16:AC:DE:A7
igniterealtime.org s2s 36:5B:76:D7:43:8B:FE:09:37:C0:47:B0:9C:1F:46:37:06:62:15:0B:AE:91:94:9F:B6:9F:03:9D:16:AC:DE:A7
xmpp.cc c2s 37:A8:D3:89:E4:84:7F:0C:48:90:84:AB:09:84:0D:82:59:7D:43:72:16:74:C3:46:E5:C5:9C:A4:2F:A8:78:95
xmpp.lt c2s 37:A8:D3:89:E4:84:7F:0C:48:90:84:AB:09:84:0D:82:59:7D:43:72:16:74:C3:46:E5:C5:9C:A4:2F:A8:78:95
xmpp.lt s2s 37:A8:D3:89:E4:84:7F:0C:48:90:84:AB:09:84:0D:82:59:7D:43:72:16:74:C3:46:E5:C5:9C:A4:2F:A8:78:95
core.mywire.org c2s 59:6F:18:C9:E8:27:CD:97:EF:86:51:61:06:D7:1E:34:7A:4B:9A:D5:4A:70:B6:04:10:DF:C1:98:EF:65:23:38
wallabag.hopto.org c2s 59:6F:18:C9:E8:27:CD:97:EF:86:51:61:06:D7:1E:34:7A:4B:9A:D5:4A:70:B6:04:10:DF:C1:98:EF:65:23:38
wallabag.hopto.org s2s 59:6F:18:C9:E8:27:CD:97:EF:86:51:61:06:D7:1E:34:7A:4B:9A:D5:4A:70:B6:04:10:DF:C1:98:EF:65:23:38
jabjab.de s2s 76:22:E6:5A:BE:98:9B:2B:5B:5C:63:A4:B5:61:47:46:C6:09:0A:47:C8:C0:D7:F8:1B:55:52:B0:23:F8:29:45
planetjabber.de c2s 76:22:E6:5A:BE:98:9B:2B:5B:5C:63:A4:B5:61:47:46:C6:09:0A:47:C8:C0:D7:F8:1B:55:52:B0:23:F8:29:45
rimkus.it c2s 8D:98:E0:E1:4E:10:94:0E:5F:E2:97:AD:9D:8D:53:85:50:7A:74:0A:6D:E2:71:9C:51:43:02:7A:F7:5D:67:AE
rimkus.it s2s 8D:98:E0:E1:4E:10:94:0E:5F:E2:97:AD:9D:8D:53:85:50:7A:74:0A:6D:E2:71:9C:51:43:02:7A:F7:5D:67:AE
xmpp2.rimkus.it c2s 8D:98:E0:E1:4E:10:94:0E:5F:E2:97:AD:9D:8D:53:85:50:7A:74:0A:6D:E2:71:9C:51:43:02:7A:F7:5D:67:AE
xmpp2.rimkus.it s2s 8D:98:E0:E1:4E:10:94:0E:5F:E2:97:AD:9D:8D:53:85:50:7A:74:0A:6D:E2:71:9C:51:43:02:7A:F7:5D:67:AE
accounts.jwchat.org s2s 96:E2:FC:4C:F6:85:52:EE:AD:1D:51:DD:03:30:04:9F:64:89:C8:3E:FA:6A:5E:09:21:48:80:CE:B5:BD:F4:F3
jwchat.org c2s 96:E2:FC:4C:F6:85:52:EE:AD:1D:51:DD:03:30:04:9F:64:89:C8:3E:FA:6A:5E:09:21:48:80:CE:B5:BD:F4:F3
jwchat.org s2s 96:E2:FC:4C:F6:85:52:EE:AD:1D:51:DD:03:30:04:9F:64:89:C8:3E:FA:6A:5E:09:21:48:80:CE:B5:BD:F4:F3
draugr.de c2s A5:99:DE:DE:0A:3F:7E:A7:AD:BD:60:A4:DC:53:45:0F:1A:BC:80:4C:A7:F8:61:DE:B4:B8:23:D3:FB:7C:DF:9D
draugr.de s2s A5:99:DE:DE:0A:3F:7E:A7:AD:BD:60:A4:DC:53:45:0F:1A:BC:80:4C:A7:F8:61:DE:B4:B8:23:D3:FB:7C:DF:9D
ubuntu-jabber.net c2s A5:99:DE:DE:0A:3F:7E:A7:AD:BD:60:A4:DC:53:45:0F:1A:BC:80:4C:A7:F8:61:DE:B4:B8:23:D3:FB:7C:DF:9D
bec3.com c2s A8:8F:9B:0F:51:76:C9:29:91:22:E4:8D:8B:AB:CC:BC:B7:61:59:C2:B2:21:84:C6:8D:D6:7F:ED:8C:4F:07:6E
im.bec3.com c2s A8:8F:9B:0F:51:76:C9:29:91:22:E4:8D:8B:AB:CC:BC:B7:61:59:C2:B2:21:84:C6:8D:D6:7F:ED:8C:4F:07:6E
jix.im c2s AC:D7:B1:2E:0B:25:C1:0C:A7:49:34:12:5F:A9:67:C4:54:E8:C7:0C:B7:91:5B:39:7C:BD:53:8E:C5:7F:1B:CB
pubsub.jix.im s2s AC:D7:B1:2E:0B:25:C1:0C:A7:49:34:12:5F:A9:67:C4:54:E8:C7:0C:B7:91:5B:39:7C:BD:53:8E:C5:7F:1B:CB
104.248.215.153 c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
104.248.215.153 s2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
earbash.me s2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
shangryla.net c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
odit.ml c2s C1:7C:04:DA:A8:21:74:DD:1E:59:23:83:15:3E:B5:5B:13:3F:BD:B3:31:00:5A:71:BF:9E:74:49:94:58:32:B2
www.odit.ml c2s C1:7C:04:DA:A8:21:74:DD:1E:59:23:83:15:3E:B5:5B:13:3F:BD:B3:31:00:5A:71:BF:9E:74:49:94:58:32:B2
jabber.tinigin.ru c2s C3:A4:83:8B:EB:8E:C2:FE:C2:AA:5C:98:0A:E7:60:F7:25:1B:66:CB:BE:3D:DB:4F:8E:66:1B:07:C2:3F:A4:FD
tinigin.ru c2s C3:A4:83:8B:EB:8E:C2:FE:C2:AA:5C:98:0A:E7:60:F7:25:1B:66:CB:BE:3D:DB:4F:8E:66:1B:07:C2:3F:A4:FD
tinigin.ru s2s C3:A4:83:8B:EB:8E:C2:FE:C2:AA:5C:98:0A:E7:60:F7:25:1B:66:CB:BE:3D:DB:4F:8E:66:1B:07:C2:3F:A4:FD
xmpp.chat c2s E3:51:DF:8B:09:F5:87:8C:A8:C5:75:6D:E1:88:1B:01:16:99:0D:5A:E0:8F:01:28:D2:1C:55:7A:21:8C:B1:DB
xmpp.co c2s E3:51:DF:8B:09:F5:87:8C:A8:C5:75:6D:E1:88:1B:01:16:99:0D:5A:E0:8F:01:28:D2:1C:55:7A:21:8C:B1:DB
xmpp.is c2s E3:51:DF:8B:09:F5:87:8C:A8:C5:75:6D:E1:88:1B:01:16:99:0D:5A:E0:8F:01:28:D2:1C:55:7A:21:8C:B1:DB
xmpp.xyz c2s E3:51:DF:8B:09:F5:87:8C:A8:C5:75:6D:E1:88:1B:01:16:99:0D:5A:E0:8F:01:28:D2:1C:55:7A:21:8C:B1:DB
xmpp.xyz s2s E3:51:DF:8B:09:F5:87:8C:A8:C5:75:6D:E1:88:1B:01:16:99:0D:5A:E0:8F:01:28:D2:1C:55:7A:21:8C:B1:DB
fsfe.org c2s F7:5C:19:E8:91:B6:AA:31:83:A4:11:BB:A1:FD:8E:B3:8F:FF:D6:1F:95:89:4F:85:FD:FD:24:00:B5:2F:AD:22
fsfe.org s2s F7:5C:19:E8:91:B6:AA:31:83:A4:11:BB:A1:FD:8E:B3:8F:FF:D6:1F:95:89:4F:85:FD:FD:24:00:B5:2F:AD:22
jabber.fsfe.org c2s F7:5C:19:E8:91:B6:AA:31:83:A4:11:BB:A1:FD:8E:B3:8F:FF:D6:1F:95:89:4F:85:FD:FD:24:00:B5:2F:AD:22