Various reports of all servers tested

Report for december 2013 | Results of the last day | Results of the last week | Results of the last month

TLS versions 678 results

SSL 2 1 0.1%
SSL 3 26 3.8%
TLS 1.0 481 70.9%
TLS 1.1 512 75.5%
TLS 1.2 666 98.2%

Grades 678 results

A 558 82.3%
B 84 12.4%
C 34 5%
D 1 0.1%
E 0 0%
F 1 0.1%
Does not penalize untrusted certificates.

RSA key sizes for domain certificates

RSA key size Count
1024 7 1%
2048 409 61.2%
3072 11 1.6%
4096 241 36.1%

StartTLS

Type Client to server Server to server
Required 338 77% 148 61.7%
Allowed 101 23% 92 38.3%

Trust

To do authenticated encryption, a certificate needs to be both trusted and valid. Trusted means it is issued by a well-known CA and valid means it is valid for the domain we want to connect to.

Trusted Untrusted
Valid 619 83.8% 60 8.1%
Invalid 17 2.3% 43 5.8%

SASL mechanisms 438 results

Mechanism # times offered before TLS # times offered after TLS
PLAIN 108 24.7% 432 98.6%
SCRAM-SHA-1 93 21.2% 347 79.2%
X-OAUTH2 46 10.5% 144 32.9%
SCRAM-SHA-1-PLUS 0 0% 136 31.1%
DIGEST-MD5 64 14.6% 112 25.6%
CRAM-MD5 24 5.5% 25 5.7%
ANONYMOUS 8 1.8% 8 1.8%
OFMEET 3 0.7% 3 0.7%
JIVE-SHAREDSECRET 3 0.7% 3 0.7%
EXTERNAL 1 0.2% 2 0.5%
NTLM 2 0.5% 2 0.5%
SCRAM-SHA-256 1 0.2% 2 0.5%
X-GOOGLE-TOKEN 2 0.5% 2 0.5%
SCRAM-SHA-256-PLUS 0 0% 1 0.2%
LOGIN 0 0% 1 0.2%
GSSAPI 1 0.2% 1 0.2%
SCRAM-SHA-384 0 0% 1 0.2%
SCRAM-SHA-384-PLUS 0 0% 1 0.2%
SCRAM-SHA-512 0 0% 1 0.2%
SCRAM-SHA-512-PLUS 0 0% 1 0.2%
TIKITOKEN 1 0.2% 1 0.2%
WEBEX-TOKEN 0 0% 1 0.2%

Servers supporting SSL 3, but not TLS 1.0 0 results

SSL 3 and TLS 1.0 are very similar, but TLS 1.0 has some small improvements. This table is meant to help judge whether SSL 3 can be disabled by listing the servers that do support SSL 3, but not TLS 1.0.

Target Type When

Servers supporting SSL 2 1 results

SSL 2 is broken and insecure. It is not required for compatibility and servers should disable it.

Target Type When
jabber.snc.ru client to server

CAs used Top 30

Name/Organization SHA1 Count
Let's Encrypt Authority X3 E6:A3:B4:5B:06:2D:50:9B:33:82:28:2D:19:6E:FE:97:D5:95:6C:CB 355
COMODO RSA Domain Validation Secure Server CA 33:9C:DD:57:CF:D5:B1:41:16:9B:61:5F:F3:14:28:78:2D:1D:A6:39 16
Let's Encrypt Authority X3 1B:23:67:53:54:FC:AD:90:11:9D:88:07:50:15:EA:17:AD:D5:27:D8 9
Sectigo RSA Domain Validation Secure Server CA 33:E4:E8:08:07:20:4C:2B:61:82:A3:A1:4B:59:1A:CD:25:B5:F0:DB 6
RapidSSL RSA CA 2018 98:C6:A8:DC:88:79:63:BA:3C:F9:C2:73:1C:BD:D3:F7:DE:05:AC:2D 5
DFN-Verein Global Issuing CA C9:DC:B0:47:AC:8C:5F:09:05:ED:77:52:8C:BD:4B:84:D9:46:3C:45 5
Go Daddy Secure Certificate Authority - G2 27:AC:93:69:FA:F2:52:07:BB:26:27:CE:FA:CC:BE:4E:F9:C3:19:B8 4
DigiCert SHA2 Secure Server CA 1F:B8:6B:11:68:EC:74:31:54:06:2E:8C:9C:C5:B1:71:A4:B7:CC:B4 2
DigiCert SHA2 Extended Validation Server CA 7E:2F:3A:4F:8F:E8:FA:8A:57:30:AE:CA:02:96:96:63:7E:98:6F:3F 2
TERENA SSL CA 3 77:B9:9B:B2:BD:75:22:E1:7E:C0:99:EA:71:77:51:6F:27:78:7C:AD 2
AlphaSSL CA - SHA256 - G2 4C:27:43:17:17:56:5A:3A:07:F3:E6:D0:03:2C:42:58:94:9C:F9:EC 2
Gandi Standard SSL CA 2 24:71:06:A4:05:B2:88:A4:6E:70:A0:26:27:17:16:2D:09:03:E7:34 2
GeoTrust RSA CA 2018 7C:CC:2A:87:E3:94:9F:20:57:2B:18:48:29:80:50:5F:A9:0C:AC:3B 2
Google Internet Authority G3 EE:AC:BD:0C:B4:52:81:95:77:91:1E:1E:62:03:DB:26:2F:84:A3:18 2
Encryption Everywhere DV TLS CA - G2 ED:63:02:68:4A:32:59:AA:04:F1:0F:E9:A9:7A:8F:D3:0B:96:5D:26 1
DOMENY SSL DV Certification Authority CE:91:2E:2E:E8:E1:47:50:6D:18:36:94:03:79:29:FC:F1:C0:72:8E 1
ejabberd 21:F5:83:EE:6A:07:73:53:CA:E7:CA:84:34:F7:36:09:53:37:2B:7D 1
ejabberd 72:C8:20:CF:35:A1:97:07:03:C7:49:C6:3A:40:05:A9:84:40:99:D5 1
DigiCert SHA2 High Assurance Server CA A0:31:C4:67:82:E6:E6:C6:62:C2:C8:7C:76:DA:9A:A6:2C:CA:BD:8E 1
COMODO ECC Domain Validation Secure Server CA 16:EE:54:E4:8C:76:EA:A1:05:2E:09:01:0D:8F:AE:FE:E9:5E:5E:BB 1
ejabberd 8E:9B:A4:49:97:33:3F:04:BA:90:A7:46:FD:AF:07:13:B6:30:A6:23 1
ejabberd 16:28:73:65:4E:70:DC:3B:10:20:7F:47:9B:13:88:21:7F:01:08:B5 1
ejabberd E4:60:50:FC:93:4E:C5:76:2E:27:74:D6:41:01:9B:74:6F:10:A3:AA 1
ejabberd 24:01:42:BD:3F:69:64:FF:6E:14:32:4C:03:83:DC:B7:56:EF:38:2A 1
ejabberd FA:5B:DE:DB:3B:27:12:1F:5C:09:8C:4C:81:96:72:13:17:44:0B:70 1
ejabberd Community Server Test Certificate 74:82:AB:54:E7:09:17:4A:D3:67:9D:37:3B:3B:4E:FD:ED:A7:A4:1B 1
darkmoney.online F0:A9:32:34:A9:7D:C6:9B:1B:EB:A3:19:10:68:1C:3F:58:70:69:3E 1
Entrust Certification Authority - L1K CC:A2:7D:33:C7:35:A7:D0:6D:1F:EC:AD:98:0E:49:8D:A6:81:C9:63 1
cajabber.com 70:1A:0D:6E:24:3F:65:F0:8E:00:06:86:88:48:BE:18:EE:7F:83:0E 1
ejabberd 4A:CB:CF:E8:66:8A:D8:AD:9A:BC:44:82:C0:AF:A5:6C:E7:23:4C:E6 1

Servers using <2048-bit RSA certificates which expires after 01-01-2014 5 results

As described in the CA/Browser Forum Baseline Requirements, certificates with RSA keys with less than 2048 bits should not be issued with an notAfter date after 31-12-2013. This list lists all certificates which violate that rule.

Target Type When Issuer
migtalk.com server to server syriabuzz.org
muc.tigase.org server to server *.muc.tigase.org
muc.tigase.org server to server muc.tigase.org
segin.ru client to server
segin.ru server to server

Servers with DNSSEC signed SRV records 143 results

Target Type When
alternanet.fr client to server
christiansaga.de client to server
cookiechat.de server to server
danwin1210.me client to server
disroot.org server to server
fossgalaxy.com client to server
interzone.be server to server
jabber.at client to server
jabber.calyxinstitute.org client to server
mailbox.org client to server
raccoon.army client to server
satmd.de client to server
simplewire.de client to server
softcat.org server to server
voucha.org server to server
x0.chat client to server
xasia.cc client to server
xmpp.trshnet.de server to server
a11k.net server to server
aeshna.de server to server
ba30.eu server to server
brevsprekk.net client to server
federez.net client to server
gwynfor.de client to server
im.cyberjinh.fr server to server
jabb3r.de client to server
jabber.absturztau.be client to server
jabber.am client to server
jabber.de server to server
jabber.olden.ch client to server
mail.de client to server
sejerland.de client to server
sharezen.de client to server
xmpp.fi client to server
zzzxxx.xyz client to server
a11k.net client to server
autistici.org client to server
beijinglug.club client to server
blug.moe client to server
christiansaga.de server to server
ddp.chat client to server
fruweb.de client to server
jabber.at server to server
jabber.cat client to server
kitsune.one server to server
mattrude.com client to server
mcgva.org server to server
papla.wmzdz.pl client to server
pimux.de server to server
ssji.net client to server
wernig.net client to server
xmpp.zone client to server
0x00.nz server to server
aeshna.de client to server
an-netz.de client to server
dismail.de client to server
jabber.absturztau.be server to server
jabber.de client to server
jabberpl.org client to server
jabber.systemli.org client to server
jabber.sytes24.pl client to server
jikken.de server to server
nerdica.net server to server
simplewire.de server to server
slevo.nl client to server
snopyta.org client to server
spemaus.de client to server
tcit.fr client to server
thinkindifferent.net client to server
wiuwiu.de client to server
x0.chat server to server
xmpp.lt server to server
zash.se client to server
0x00.nz client to server
brevsprekk.net server to server
domob.eu server to server
gaf.fs.lmu.de server to server
gajim.org client to server
invy.at server to server
jugendhacker.de client to server
mailbox.org server to server
nerdica.net client to server
softcat.org client to server
tcit.fr server to server
xmpp.is client to server
4ept.net client to server
ba30.eu client to server
cirrax.com server to server
core.mx client to server
draugr.de client to server
fysh.in client to server
gajim.org server to server
hsdev.com client to server
jabber.olden.ch server to server
jabberpl.org server to server
jabber.tcpreset.net client to server
jikken.de client to server
kupschke.net client to server
olomono.de server to server
sejerland.de server to server
shug.ch client to server
slevo.nl server to server
strobeto.de client to server
wollu.xyz client to server
xmpp.dk client to server
xmpp.trshnet.de client to server
404.city server to server
5222.de client to server
bitnoise.net client to server
fossgalaxy.com server to server
fruweb.de server to server
hot-chilli.net client to server
im.cyberjinh.fr client to server
invy.at client to server
jabb3r.de server to server
jabber.hot-chilli.net client to server
jabber.rhizogen.es.eu.org client to server
jabber.zone client to server
jugendhacker.de server to server
olomono.de client to server
riseup.net client to server
riva.capital client to server
trashserver.net server to server
wollu.xyz server to server
xmpp.frozenstar.info client to server
xmpp-hosting.de client to server
avia.cab client to server
cirrax.com client to server
danwin1210.me server to server
disroot.org client to server
domob.eu client to server
gaf.fs.lmu.de client to server
hauweele.net client to server
hsdev.com server to server
interzone.be client to server
jabb3r.org client to server
jabber.registro.br client to server
jabber.zone server to server
kupschke.net server to server
magicbroccoli.de client to server
magicbroccoli.de server to server
trashserver.net client to server
xmpp.lt client to server

Servers with DNSSEC signed DANE records 0 results

Target Type When

Servers with a hidden service 0 results

Target Type When

Servers not offering encryption 9 results

Target Type When
asguard.pro client to server
cisco.com server to server
gilbertgirard.ml client to server
migtalk.com client to server
openfire.insera-sena.com client to server
stavipa.ru server to server
xmpp.hasmarkaryatama.com client to server
xmpp.muggum.fr server to server
xpanel.cc server to server

Servers sharing private keys 47 results

Target SHA256(SPKI)
conference.mbrg.nl s2s 26:79:54:8A:AF:BF:BD:8E:6E:22:3B:1D:E3:DA:4E:3A:1D:86:E4:3D:AD:BA:61:3D:39:94:5E:D7:32:DD:14:D2
mbrg.nl c2s 26:79:54:8A:AF:BF:BD:8E:6E:22:3B:1D:E3:DA:4E:3A:1D:86:E4:3D:AD:BA:61:3D:39:94:5E:D7:32:DD:14:D2
mbrg.nl s2s 26:79:54:8A:AF:BF:BD:8E:6E:22:3B:1D:E3:DA:4E:3A:1D:86:E4:3D:AD:BA:61:3D:39:94:5E:D7:32:DD:14:D2
chat.octavianonline.com c2s 33:7F:57:39:A7:3D:B5:C5:04:BB:B4:C7:DD:69:58:4C:28:5C:66:42:0D:1E:98:D8:00:CE:6D:15:74:9D:4B:85
octavianonline.com c2s 33:7F:57:39:A7:3D:B5:C5:04:BB:B4:C7:DD:69:58:4C:28:5C:66:42:0D:1E:98:D8:00:CE:6D:15:74:9D:4B:85
octavianonline.com s2s 33:7F:57:39:A7:3D:B5:C5:04:BB:B4:C7:DD:69:58:4C:28:5C:66:42:0D:1E:98:D8:00:CE:6D:15:74:9D:4B:85
netdock.i234.me c2s 3C:42:24:5A:19:26:AE:BE:12:8C:4F:88:9A:15:F6:6C:F5:90:64:AF:1C:51:60:95:8E:AC:F7:78:41:9D:62:6B
netdock.i234.me s2s 3C:42:24:5A:19:26:AE:BE:12:8C:4F:88:9A:15:F6:6C:F5:90:64:AF:1C:51:60:95:8E:AC:F7:78:41:9D:62:6B
netdock.servehttp.com s2s 3C:42:24:5A:19:26:AE:BE:12:8C:4F:88:9A:15:F6:6C:F5:90:64:AF:1C:51:60:95:8E:AC:F7:78:41:9D:62:6B
xmpp.fi c2s 58:FC:12:2B:56:01:66:40:18:28:13:7B:64:D6:D5:BF:F0:FA:81:45:EC:48:E5:8C:89:11:49:72:4E:B2:24:44
xmpp.is c2s 58:FC:12:2B:56:01:66:40:18:28:13:7B:64:D6:D5:BF:F0:FA:81:45:EC:48:E5:8C:89:11:49:72:4E:B2:24:44
0x00.nz c2s 5C:D7:4D:95:7C:54:33:BF:DD:92:69:56:68:35:91:C0:B7:53:E0:F3:4C:E8:10:DA:AD:82:E6:6D:B4:D8:C7:AB
0x00.nz s2s 5C:D7:4D:95:7C:54:33:BF:DD:92:69:56:68:35:91:C0:B7:53:E0:F3:4C:E8:10:DA:AD:82:E6:6D:B4:D8:C7:AB
xmpp.lt c2s 5C:D7:4D:95:7C:54:33:BF:DD:92:69:56:68:35:91:C0:B7:53:E0:F3:4C:E8:10:DA:AD:82:E6:6D:B4:D8:C7:AB
xmpp.lt s2s 5C:D7:4D:95:7C:54:33:BF:DD:92:69:56:68:35:91:C0:B7:53:E0:F3:4C:E8:10:DA:AD:82:E6:6D:B4:D8:C7:AB
chat.dbjr.org c2s 85:06:AD:6F:91:A0:5A:9F:A2:7B:D6:50:F1:A2:95:32:3B:66:61:A5:28:74:38:10:7B:74:D6:BD:E5:F2:6A:DC
yochat.eu c2s 85:06:AD:6F:91:A0:5A:9F:A2:7B:D6:50:F1:A2:95:32:3B:66:61:A5:28:74:38:10:7B:74:D6:BD:E5:F2:6A:DC
yochat.eu s2s 85:06:AD:6F:91:A0:5A:9F:A2:7B:D6:50:F1:A2:95:32:3B:66:61:A5:28:74:38:10:7B:74:D6:BD:E5:F2:6A:DC
jabber.matthey.im c2s 8B:48:43:40:CD:3F:66:A5:E6:09:5C:9C:2C:92:D5:A2:3D:10:35:FC:C6:8F:D4:01:AC:C2:41:18:CC:54:B2:6D
jabber.olden.ch c2s 8B:48:43:40:CD:3F:66:A5:E6:09:5C:9C:2C:92:D5:A2:3D:10:35:FC:C6:8F:D4:01:AC:C2:41:18:CC:54:B2:6D
jabber.olden.ch s2s 8B:48:43:40:CD:3F:66:A5:E6:09:5C:9C:2C:92:D5:A2:3D:10:35:FC:C6:8F:D4:01:AC:C2:41:18:CC:54:B2:6D
beijinglug.club c2s 9F:71:E2:62:E8:17:A7:83:3C:03:DD:BA:96:F9:7F:85:C8:ED:BE:15:3A:AB:8A:BE:B1:9A:02:7D:46:28:26:08
blug.moe c2s 9F:71:E2:62:E8:17:A7:83:3C:03:DD:BA:96:F9:7F:85:C8:ED:BE:15:3A:AB:8A:BE:B1:9A:02:7D:46:28:26:08
216.158.78.61 c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
ejabberd.01people.tech c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
mc.eratelprima.id c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
57n.org c2s C2:E2:4F:2D:7C:E4:A5:F9:4F:04:34:58:7F:6B:43:C7:F0:BB:A3:92:73:2E:AD:76:54:4E:3D:58:C3:7D:FA:B1
57n.org s2s C2:E2:4F:2D:7C:E4:A5:F9:4F:04:34:58:7F:6B:43:C7:F0:BB:A3:92:73:2E:AD:76:54:4E:3D:58:C3:7D:FA:B1
muc.57n.org s2s C2:E2:4F:2D:7C:E4:A5:F9:4F:04:34:58:7F:6B:43:C7:F0:BB:A3:92:73:2E:AD:76:54:4E:3D:58:C3:7D:FA:B1
airmail.cc c2s CD:88:F4:5A:D9:99:82:73:4C:E3:07:91:5A:08:6A:2E:0A:A0:57:95:83:F0:10:8A:1B:D2:79:76:2B:27:EE:0F
airmail.cc s2s CD:88:F4:5A:D9:99:82:73:4C:E3:07:91:5A:08:6A:2E:0A:A0:57:95:83:F0:10:8A:1B:D2:79:76:2B:27:EE:0F
cock.li c2s CD:88:F4:5A:D9:99:82:73:4C:E3:07:91:5A:08:6A:2E:0A:A0:57:95:83:F0:10:8A:1B:D2:79:76:2B:27:EE:0F
firemail.cc c2s CD:88:F4:5A:D9:99:82:73:4C:E3:07:91:5A:08:6A:2E:0A:A0:57:95:83:F0:10:8A:1B:D2:79:76:2B:27:EE:0F
firemail.cc s2s CD:88:F4:5A:D9:99:82:73:4C:E3:07:91:5A:08:6A:2E:0A:A0:57:95:83:F0:10:8A:1B:D2:79:76:2B:27:EE:0F
jive.home.nyu.edu c2s DF:43:68:A0:2F:32:C0:EF:F0:04:E4:23:71:BD:7F:10:B9:DF:44:24:BA:0E:59:50:36:EC:27:AB:22:61:6A:4C
nyu.edu c2s DF:43:68:A0:2F:32:C0:EF:F0:04:E4:23:71:BD:7F:10:B9:DF:44:24:BA:0E:59:50:36:EC:27:AB:22:61:6A:4C
sure.im s2s E2:E4:37:91:B2:F6:0A:D3:74:5A:42:78:3D:F2:12:FC:49:08:8D:5A:B3:28:72:F4:1A:E2:15:6B:1A:C3:25:9A
tigase.im s2s E2:E4:37:91:B2:F6:0A:D3:74:5A:42:78:3D:F2:12:FC:49:08:8D:5A:B3:28:72:F4:1A:E2:15:6B:1A:C3:25:9A
tigase.org c2s E2:E4:37:91:B2:F6:0A:D3:74:5A:42:78:3D:F2:12:FC:49:08:8D:5A:B3:28:72:F4:1A:E2:15:6B:1A:C3:25:9A
tigase.org s2s E2:E4:37:91:B2:F6:0A:D3:74:5A:42:78:3D:F2:12:FC:49:08:8D:5A:B3:28:72:F4:1A:E2:15:6B:1A:C3:25:9A
medusa.priv.at c2s ED:CF:93:1C:3A:6B:7D:D6:B2:3A:FA:C2:A2:C8:42:1D:8D:63:A6:87:FB:09:83:DD:7F:CF:5E:77:41:CF:62:0E
xmpp.medusa.priv.at c2s ED:CF:93:1C:3A:6B:7D:D6:B2:3A:FA:C2:A2:C8:42:1D:8D:63:A6:87:FB:09:83:DD:7F:CF:5E:77:41:CF:62:0E
xmpp.medusa.priv.at s2s ED:CF:93:1C:3A:6B:7D:D6:B2:3A:FA:C2:A2:C8:42:1D:8D:63:A6:87:FB:09:83:DD:7F:CF:5E:77:41:CF:62:0E
conference.orbitalfox.eu s2s F5:17:5F:5F:A9:97:0B:61:1D:4A:91:A6:F5:5F:BD:0E:CA:A0:DC:EA:1D:3C:40:94:DB:13:AB:17:44:45:B5:45
orbitalfox.eu s2s F5:17:5F:5F:A9:97:0B:61:1D:4A:91:A6:F5:5F:BD:0E:CA:A0:DC:EA:1D:3C:40:94:DB:13:AB:17:44:45:B5:45
conference.jabber.fsfe.org s2s F7:5C:19:E8:91:B6:AA:31:83:A4:11:BB:A1:FD:8E:B3:8F:FF:D6:1F:95:89:4F:85:FD:FD:24:00:B5:2F:AD:22
jabber.fsfe.org c2s F7:5C:19:E8:91:B6:AA:31:83:A4:11:BB:A1:FD:8E:B3:8F:FF:D6:1F:95:89:4F:85:FD:FD:24:00:B5:2F:AD:22