Various reports of all servers tested

Report for december 2013 | Results of the last day | Results of the last week | Results of the last month

TLS versions 553 results

SSL 2 0 0%
SSL 3 12 2.2%
TLS 1.0 338 61.1%
TLS 1.1 365 66%
TLS 1.2 549 99.3%

Grades 553 results

A 477 86.3%
B 59 10.7%
C 15 2.7%
D 0 0%
E 0 0%
F 2 0.4%
Does not penalize untrusted certificates.

RSA key sizes for domain certificates

RSA key size Count
512 1 0.2%
1024 7 1.3%
2048 326 59.2%
3072 6 1.1%
4096 211 38.3%

StartTLS

Type Client to server Server to server
Required 283 79.5% 127 64.5%
Allowed 73 20.5% 70 35.5%

Trust

To do authenticated encryption, a certificate needs to be both trusted and valid. Trusted means it is issued by a well-known CA and valid means it is valid for the domain we want to connect to.

Trusted Untrusted
Valid 505 84.6% 52 8.7%
Invalid 9 1.5% 31 5.2%

SASL mechanisms 356 results

Mechanism # times offered before TLS # times offered after TLS
PLAIN 74 20.8% 341 95.8%
SCRAM-SHA-1 65 18.3% 287 80.6%
SCRAM-SHA-1-PLUS 0 0% 112 31.5%
X-OAUTH2 22 6.2% 98 27.5%
DIGEST-MD5 45 12.6% 80 22.5%
CRAM-MD5 18 5.1% 19 5.3%
ANONYMOUS 4 1.1% 8 2.2%
SCRAM-SHA-256 1 0.3% 5 1.4%
EXTERNAL 3 0.8% 5 1.4%
LOGIN 1 0.3% 4 1.1%
GSSAPI 2 0.6% 3 0.8%
OFMEET 2 0.6% 2 0.6%
OAUTHBEARER 0 0% 1 0.3%
SCRAM-SHA-256-PLUS 0 0% 1 0.3%
TIKITOKEN 1 0.3% 1 0.3%
CISCO-VTG-TOKEN 0 0% 1 0.3%
X-TOKEN 0 0% 1 0.3%

Servers supporting SSL 3, but not TLS 1.0 0 results

SSL 3 and TLS 1.0 are very similar, but TLS 1.0 has some small improvements. This table is meant to help judge whether SSL 3 can be disabled by listing the servers that do support SSL 3, but not TLS 1.0.

Target Type When

Servers supporting SSL 2 0 results

SSL 2 is broken and insecure. It is not required for compatibility and servers should disable it.

Target Type When

CAs used Top 30

Name/Organization SHA1 Count
Let's Encrypt Authority X3 E6:A3:B4:5B:06:2D:50:9B:33:82:28:2D:19:6E:FE:97:D5:95:6C:CB 309
Sectigo RSA Domain Validation Secure Server CA 33:E4:E8:08:07:20:4C:2B:61:82:A3:A1:4B:59:1A:CD:25:B5:F0:DB 10
Let's Encrypt Authority X3 1B:23:67:53:54:FC:AD:90:11:9D:88:07:50:15:EA:17:AD:D5:27:D8 8
COMODO RSA Domain Validation Secure Server CA 33:9C:DD:57:CF:D5:B1:41:16:9B:61:5F:F3:14:28:78:2D:1D:A6:39 8
Go Daddy Secure Certificate Authority - G2 27:AC:93:69:FA:F2:52:07:BB:26:27:CE:FA:CC:BE:4E:F9:C3:19:B8 6
DigiCert SHA2 Secure Server CA 1F:B8:6B:11:68:EC:74:31:54:06:2E:8C:9C:C5:B1:71:A4:B7:CC:B4 5
DFN-Verein Global Issuing CA C9:DC:B0:47:AC:8C:5F:09:05:ED:77:52:8C:BD:4B:84:D9:46:3C:45 3
GlobalSign Organization Validation CA - SHA256 - G2 90:2E:F2:DE:EB:3C:5B:13:EA:4C:3D:51:93:62:93:09:E2:31:AE:55 2
Thawte RSA CA 2018 4D:EE:A7:06:0D:80:BA:BF:16:43:B4:E0:F0:10:4C:82:99:50:75:B7 2
AlphaSSL CA - SHA256 - G2 4C:27:43:17:17:56:5A:3A:07:F3:E6:D0:03:2C:42:58:94:9C:F9:EC 2
proc.ru BC:BC:D8:21:38:07:BC:5C:71:B1:CA:E1:F0:9C:42:F8:C1:7A:3B:87 1
GeoTrust RSA CA 2018 7C:CC:2A:87:E3:94:9F:20:57:2B:18:48:29:80:50:5F:A9:0C:AC:3B 1
x.ranatuc.ranaco.com 6B:21:4E:FE:D1:43:31:21:1E:A1:D2:3F:CB:6E:53:18:C9:5E:C9:19 1
RapidSSL CA C0:39:A3:26:9E:E4:B8:E8:2D:00:C5:3F:A7:97:B5:A1:9E:83:6F:47 1
CAcert Class 3 Root AD:7C:3F:64:FC:44:39:FE:F4:E9:0B:E8:F4:7C:6C:FA:8A:AD:FD:CE 1
kjb.ro FC:51:EA:B0:E3:4B:A9:A4:F0:BE:D4:CF:FC:9A:86:05:B2:81:62:05 1
*.ec2-18-207-186-86.compute-1.amazonaws.com 25:CF:44:51:DE:AD:0C:0C:E4:9D:2C:F2:FC:ED:79:52:16:6E:8D:29 1
ejabberd 7B:28:80:04:CB:D9:26:32:09:EF:AD:FB:5E:85:A2:4A:C5:13:53:37 1
Bentley-Internal-CA 8B:92:D2:62:90:99:B4:91:9A:B4:51:15:CB:59:40:E9:AE:C6:FB:83 1
*.pandion.im 5B:64:55:0E:88:55:66:25:7A:92:02:70:68:8C:EC:6B:B0:E7:39:F8 1
localhost B9:B3:E3:1F:26:CC:BF:DF:1E:78:9D:CA:61:A7:40:C5:FF:9C:E9:83 1
grosbein.net F9:09:58:EC:74:0C:B6:B1:C4:5D:6B:B8:5B:84:1A:A1:77:F6:EE:16 1
ec2-18-207-186-86.compute-1.amazonaws.com 25:CF:44:51:DE:AD:0C:0C:E4:9D:2C:F2:FC:ED:79:52:16:6E:8D:29 1
ejabberd 31:89:28:96:D0:40:8D:48:ED:9C:F5:7E:DB:46:72:DE:55:4D:A5:D6 1
(Unknown) 5E:7F:70:0C:EE:E3:57:C5:DB:3E:C3:9A:70:17:92:E3:6E:84:8B:5D 1
voronov-jabber.xyz 62:0A:BB:F0:73:52:B3:15:9D:83:23:68:B8:FD:C5:C8:CB:E0:96:42 1
RapidSSL RSA CA 2018 98:C6:A8:DC:88:79:63:BA:3C:F9:C2:73:1C:BD:D3:F7:DE:05:AC:2D 1
srv-107.nx7.net 27:3A:84:1B:67:15:2A:51:F0:61:7F:CC:82:A4:78:57:16:72:35:FC 1
carding.network 5D:F9:57:0A:33:C2:59:EF:38:1A:CF:91:22:FE:25:AC:67:F2:45:80 1
Conversations CA F9:87:0B:66:B3:81:01:6F:E3:F3:F2:C4:B2:9E:3D:64:54:FA:E5:E8 1

Servers using <2048-bit RSA certificates which expires after 01-01-2014 7 results

As described in the CA/Browser Forum Baseline Requirements, certificates with RSA keys with less than 2048 bits should not be issued with an notAfter date after 31-12-2013. This list lists all certificates which violate that rule.

Target Type When Issuer
bunin.im server to server admin@idalgo.es
ec2-18-207-186-86.compute-1.amazonaws.com client to server *.ec2-18-207-186-86.compute-1.amazonaws.com
ec2-18-207-186-86.compute-1.amazonaws.com client to server ec2-18-207-186-86.compute-1.amazonaws.com
grosbein.net client to server grosbein.net
jabber.proc.ru client to server proc.ru
jabber.proc.ru server to server proc.ru
pandion.im client to server *.pandion.im

Servers with DNSSEC signed SRV records 115 results

Target Type When
404.city client to server
404.city server to server
5222.de client to server
a3.pm client to server
anoxinon.me client to server
anoxinon.me server to server
babai.ru server to server
bastelbude.eu server to server
beijinglug.club client to server
chbmeyer.de server to server
coders-nemesis.eu client to server
core.mx client to server
death.social client to server
death.social server to server
dismail.de client to server
disroot.org client to server
disroot.org server to server
draugr.de client to server
draugr.de server to server
eckmul.net client to server
faceless.city server to server
faui2k9.de client to server
faui2k9.de server to server
gaf.fs.lmu.de client to server
gaf.fs.lmu.de server to server
gajim.org client to server
gauron.fr server to server
germany-cluster.com client to server
germany-cluster.com server to server
hillmeier.net client to server
hillmeier.net server to server
huskyno.se client to server
huskyno.se server to server
ifsr.de client to server
iluha.de client to server
iluha.de server to server
im.huttiesroow.nl client to server
intelfx.name client to server
intelfx.name server to server
inventati.org client to server
invy.at server to server
jabb3r.de client to server
jabb3r.org client to server
jabber.absturztau.be client to server
jabber.absturztau.be server to server
jabber.at client to server
jabber.calyxinstitute.org client to server
jabber.calyxinstitute.org server to server
jabber.cat client to server
jabber.de client to server
jabber.fi client to server
jabber.fi server to server
jabber.fr client to server
jabberfr.org client to server
jabber.hot-chilli.eu client to server
jabber.hot-chilli.net client to server
jabberhut.de client to server
jabberhut.de server to server
jabber.systemli.org client to server
jabber.tcpreset.net client to server
jabber.tyntec.com client to server
jugendhacker.de client to server
jugendhacker.de server to server
levelsystems.eu client to server
magicbroccoli.de client to server
mailbox.org client to server
mailbox.org server to server
marevalo.net client to server
mattrude.com client to server
multi-vpn.biz client to server
nakanai.de server to server
niel.site client to server
nologs.at client to server
nologs.at server to server
nologs.be client to server
nologs.be server to server
omaera.org client to server
omaera.org server to server
pimux.de client to server
pywy.fr client to server
pywy.fr server to server
serafean.cz client to server
serafean.cz server to server
serenitylabs.cloud client to server
serenitylabs.cloud server to server
shreddox.eu client to server
simplewire.de client to server
skynetcloud.site client to server
skynetcloud.site server to server
snopyta.org client to server
snopyta.org server to server
strobeto.de client to server
strobeto.de server to server
suchat.org client to server
suchat.org server to server
thesecure.biz client to server
toleressea.fr client to server
transitiv.net client to server
trashserver.net client to server
tuxli.ch client to server
tuxli.ch server to server
ufolabs.me client to server
valentin-vidic.from.hr client to server
vanderwarker.family client to server
volatile.bz server to server
wiuwiu.de client to server
x0.chat client to server
x0.chat server to server
xmpp.cc client to server
xmpp.cc server to server
xmpp.is client to server
xmpp.lt client to server
xmpp.lt server to server
xmpp.skynetcloud.site client to server
xmpp.xyz client to server

Servers with DNSSEC signed DANE records 0 results

Target Type When

Servers with a hidden service 2 results

Target Type When
jabber.calyxinstitute.org client to server
jabber.calyxinstitute.org server to server

Servers not offering encryption 5 results

Target Type When
dialer.etpbx.com client to server
ejabberd-dev.slatch.io client to server
himki.net server to server
selfnet.at client to server
uc.sae.tdk.com client to server

Servers sharing private keys 45 results

Target SHA256(SPKI)
jabber.fr c2s 02:EA:06:3F:9F:2F:60:21:23:55:D0:1A:AE:F0:C0:16:CA:73:99:68:24:29:95:F5:B8:27:EB:95:E2:0E:B0:0A
jabberfr.org c2s 02:EA:06:3F:9F:2F:60:21:23:55:D0:1A:AE:F0:C0:16:CA:73:99:68:24:29:95:F5:B8:27:EB:95:E2:0E:B0:0A
pix-art.de c2s 0C:2B:BF:EF:FD:FB:5B:09:BA:E1:09:E8:15:DD:8F:19:E6:4F:97:77:AA:F0:2A:24:64:D2:0C:2F:2A:C5:79:69
push.pix-art.de s2s 0C:2B:BF:EF:FD:FB:5B:09:BA:E1:09:E8:15:DD:8F:19:E6:4F:97:77:AA:F0:2A:24:64:D2:0C:2F:2A:C5:79:69
carding.network c2s 2B:40:BB:79:F6:50:BD:1A:87:EA:9C:1B:AA:E5:F1:2F:C2:25:E2:AC:98:45:E5:F9:E3:3B:8D:70:F8:2A:E7:FC
carding.network s2s 2B:40:BB:79:F6:50:BD:1A:87:EA:9C:1B:AA:E5:F1:2F:C2:25:E2:AC:98:45:E5:F9:E3:3B:8D:70:F8:2A:E7:FC
chknet.io c2s 2B:40:BB:79:F6:50:BD:1A:87:EA:9C:1B:AA:E5:F1:2F:C2:25:E2:AC:98:45:E5:F9:E3:3B:8D:70:F8:2A:E7:FC
chknet.io s2s 2B:40:BB:79:F6:50:BD:1A:87:EA:9C:1B:AA:E5:F1:2F:C2:25:E2:AC:98:45:E5:F9:E3:3B:8D:70:F8:2A:E7:FC
familieholme.de c2s 31:68:DE:B7:FB:3A:7F:69:2C:B7:72:5E:B4:5F:A2:4F:07:78:D1:81:5C:91:51:28:37:C2:75:3F:73:FF:46:1D
familieholme.de s2s 31:68:DE:B7:FB:3A:7F:69:2C:B7:72:5E:B4:5F:A2:4F:07:78:D1:81:5C:91:51:28:37:C2:75:3F:73:FF:46:1D
kosh.familieholme.de c2s 31:68:DE:B7:FB:3A:7F:69:2C:B7:72:5E:B4:5F:A2:4F:07:78:D1:81:5C:91:51:28:37:C2:75:3F:73:FF:46:1D
kosh.familieholme.de s2s 31:68:DE:B7:FB:3A:7F:69:2C:B7:72:5E:B4:5F:A2:4F:07:78:D1:81:5C:91:51:28:37:C2:75:3F:73:FF:46:1D
konnect.netplus.ch c2s 48:85:57:E9:1D:09:4D:AA:79:02:39:7B:2C:17:E6:DE:B9:22:68:2A:F4:F2:9B:18:5A:B2:D8:4D:97:67:1C:4E
xmppitv.netplus.ch c2s 48:85:57:E9:1D:09:4D:AA:79:02:39:7B:2C:17:E6:DE:B9:22:68:2A:F4:F2:9B:18:5A:B2:D8:4D:97:67:1C:4E
chatn.app c2s 54:05:02:CA:5E:E3:E7:38:48:32:55:72:A9:8A:7A:C9:47:42:67:DD:6C:AE:AE:DF:DE:BA:79:89:78:5F:0A:7D
dev.chatn.app c2s 54:05:02:CA:5E:E3:E7:38:48:32:55:72:A9:8A:7A:C9:47:42:67:DD:6C:AE:AE:DF:DE:BA:79:89:78:5F:0A:7D
chat.sum7.eu c2s 88:F2:80:CD:9D:8B:0E:02:9E:71:01:2C:74:61:FC:91:30:03:CF:7F:76:56:BA:FE:2A:E6:7C:42:87:D1:FF:2D
meckerspace.de c2s 88:F2:80:CD:9D:8B:0E:02:9E:71:01:2C:74:61:FC:91:30:03:CF:7F:76:56:BA:FE:2A:E6:7C:42:87:D1:FF:2D
jabjab.de c2s 89:E6:2D:9B:6F:1B:46:AC:62:9D:07:AB:6B:BE:94:0B:60:AD:7B:16:2E:75:61:34:79:7B:F6:7C:84:2A:C4:D4
planetjabber.de c2s 89:E6:2D:9B:6F:1B:46:AC:62:9D:07:AB:6B:BE:94:0B:60:AD:7B:16:2E:75:61:34:79:7B:F6:7C:84:2A:C4:D4
0x00.nz c2s 95:4A:CE:BC:60:98:92:06:31:4D:2D:DA:8E:35:35:6B:E8:E3:60:AC:B2:77:9B:87:27:5E:D6:11:C5:9B:BB:37
0x00.nz s2s 95:4A:CE:BC:60:98:92:06:31:4D:2D:DA:8E:35:35:6B:E8:E3:60:AC:B2:77:9B:87:27:5E:D6:11:C5:9B:BB:37
5222.to c2s 95:4A:CE:BC:60:98:92:06:31:4D:2D:DA:8E:35:35:6B:E8:E3:60:AC:B2:77:9B:87:27:5E:D6:11:C5:9B:BB:37
5222.to s2s 95:4A:CE:BC:60:98:92:06:31:4D:2D:DA:8E:35:35:6B:E8:E3:60:AC:B2:77:9B:87:27:5E:D6:11:C5:9B:BB:37
aws-dev.signaling.transientx.com c2s 9D:07:83:C7:FD:9B:51:8E:4F:71:C2:7C:B8:01:90:C6:B3:55:9A:0A:C1:32:F6:38:1C:49:5C:E9:FA:DA:1D:76
signaling.transientx.com c2s 9D:07:83:C7:FD:9B:51:8E:4F:71:C2:7C:B8:01:90:C6:B3:55:9A:0A:C1:32:F6:38:1C:49:5C:E9:FA:DA:1D:76
goodsource.ru c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
jabber.artoftrip.com c2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
xmpp.mkingzhu.xyz s2s B7:79:B5:65:0E:B0:DA:0C:38:62:45:D4:4C:29:09:B4:8D:89:8B:49:57:21:ED:67:E4:9D:AF:71:A5:13:5F:66
heap.zone c2s EA:84:29:D0:3F:D4:88:85:FF:9A:AE:CA:EE:1B:14:07:A1:46:07:BF:9D:3B:29:2D:AF:C1:CE:5D:C1:46:E2:B3
heap.zone s2s EA:84:29:D0:3F:D4:88:85:FF:9A:AE:CA:EE:1B:14:07:A1:46:07:BF:9D:3B:29:2D:AF:C1:CE:5D:C1:46:E2:B3
nil.im s2s EA:84:29:D0:3F:D4:88:85:FF:9A:AE:CA:EE:1B:14:07:A1:46:07:BF:9D:3B:29:2D:AF:C1:CE:5D:C1:46:E2:B3
testxms.xtribeapp.com c2s ED:D7:8F:16:71:2D:07:E0:60:99:9B:BE:76:63:19:83:18:73:07:D2:50:55:C3:BC:33:BE:BE:19:7E:34:95:1F
xms.xtribeapp.com c2s ED:D7:8F:16:71:2D:07:E0:60:99:9B:BE:76:63:19:83:18:73:07:D2:50:55:C3:BC:33:BE:BE:19:7E:34:95:1F
xmpp.is c2s F1:54:DB:E7:DB:66:E7:42:B1:81:26:1B:06:C0:97:86:17:72:B7:33:27:BB:95:47:D6:64:36:C9:18:B1:0D:FB
xmpp.si s2s F1:54:DB:E7:DB:66:E7:42:B1:81:26:1B:06:C0:97:86:17:72:B7:33:27:BB:95:47:D6:64:36:C9:18:B1:0D:FB
xmpp.xyz c2s F1:54:DB:E7:DB:66:E7:42:B1:81:26:1B:06:C0:97:86:17:72:B7:33:27:BB:95:47:D6:64:36:C9:18:B1:0D:FB
cloud-xmpp.restcomm.com s2s F5:E7:9D:A6:04:70:77:39:01:AD:28:60:0B:F5:BE:70:B7:F0:78:E4:B6:51:AC:CA:56:EE:B2:80:E5:3E:24:C4
dev.restcomm.com s2s F5:E7:9D:A6:04:70:77:39:01:AD:28:60:0B:F5:BE:70:B7:F0:78:E4:B6:51:AC:CA:56:EE:B2:80:E5:3E:24:C4
dev-xmpp-synth-monitoring.restcomm.com s2s F5:E7:9D:A6:04:70:77:39:01:AD:28:60:0B:F5:BE:70:B7:F0:78:E4:B6:51:AC:CA:56:EE:B2:80:E5:3E:24:C4
usstaging.restcomm.com s2s F5:E7:9D:A6:04:70:77:39:01:AD:28:60:0B:F5:BE:70:B7:F0:78:E4:B6:51:AC:CA:56:EE:B2:80:E5:3E:24:C4
usstaging-xmpp-synth-monitoring.restcomm.com s2s F5:E7:9D:A6:04:70:77:39:01:AD:28:60:0B:F5:BE:70:B7:F0:78:E4:B6:51:AC:CA:56:EE:B2:80:E5:3E:24:C4
us-xmpp-synth-monitoring.restcomm.com s2s F5:E7:9D:A6:04:70:77:39:01:AD:28:60:0B:F5:BE:70:B7:F0:78:E4:B6:51:AC:CA:56:EE:B2:80:E5:3E:24:C4
it.ecec.com c2s F7:73:D5:04:41:9E:F3:8B:44:FF:2D:C8:8A:CD:C8:3D:92:1A:DA:70:CF:04:82:EE:8E:17:FB:5E:3D:74:9D:8A
spark.ecec.com c2s F7:73:D5:04:41:9E:F3:8B:44:FF:2D:C8:8A:CD:C8:3D:92:1A:DA:70:CF:04:82:EE:8E:17:FB:5E:3D:74:9D:8A