IM Observatory client report for auf.org

Test started 2018-06-16 19:56:33 UTC .

Show server to server result | Permalink to this report | Retest

jabber.ca.auf.org:5222
Certificate is not trusted, grade capped to F. Ignoring trust: B.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
jabber.ca.auf.org:5222
StartTLS
REQUIRED

SASL

Pre-TLS

None

Post-TLS
PLAIN
X-OAUTH2

SRV records _xmpp-client._tcp.auf.org NO DNSSEC

Priority Weight Port Server
5 0 5222 jabber.ca.auf.org

TLSA records

Certificates

Subject
commonName
jabber.ca.auf.org
countryName
CA
organizationalUnitName
BA
organizationName
AUF
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-08-22 16:16:31 UTC
Valid to
2019-08-21 16:16:31 UTC
CRL
http://igc.auf.org/crl/CN=AC-BA,OU=BA,O=AUF
OCSP
http://igc.auf.org/ocsp
Valid for auf.org
YES
60:C7:CE:F1:A5:63:1A:81:9E:EF:78:EF:5B:C7:A5:C1:8B:E4:2F:7B
Subject Alternative Names
DNSName
jabber.ca.auf.org
DNSName
auf.org Matches
DNSName
jabber.auf.org
DNSName
xmpp.ca.auf.org
DNSName
xmpp.auf.org
Subject
commonName
AC-BA
organizationalUnitName
BA
organizationName
AUF
Details
Error: self signed certificate in certificate chain.
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2008-10-28 16:30:10 UTC
Valid to
2033-10-22 15:36:27 UTC
CRL
http://igc.auf.org/crl/CN=AC-RACINE,OU=AUF,O=AUF
OCSP
http://igc.auf.org/ocsp
4E:87:56:50:6D:C1:CF:E5:6A:F6:17:C4:F9:E2:9F:9B:EB:E2:32:18
Subject
commonName
AC-RACINE
organizationalUnitName
AUF
organizationName
AUF
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2008-10-28 15:36:27 UTC
Valid to
2033-10-22 15:36:27 UTC
CRL
http://igc.auf.org/crl/CN=AC-RACINE,OU=AUF,O=AUF
OCSP
http://igc.auf.org/ocsp
CB:C8:03:9F:27:FC:0A:39:B3:6F:98:10:47:A0:E7:6D:93:57:AB:73

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp521r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp521r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp521r1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp521r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp521r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp521r1
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=auf.org&amp;type=client'><img src='https://xmpp.net/badge.php?domain=auf.org' alt='xmpp.net score' /></a>