IM Observatory

IM Observatory client report for barwah.net

Test started 2018-12-11 17:50:09 UTC .

Show server to server result | Permalink to this report | Retest

Score

barwah.net:5222
Certificate score:
100
Key exchange score:
40
Protocol score:
90
Cipher score:
50
Grade:

C

Warning: Server allows RC4 when using TLS 1.1 and/or TLS 1.2. Grade capped to C.
Server supports SSL 3. Grade capped to B.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.

General

barwah.net:5222
StartTLS
REQUIRED

SASL

Pre-TLS
ANONYMOUS
CRAM-MD5
DIGEST-MD5
JIVE-SHAREDSECRET
PLAIN
Post-TLS
ANONYMOUS
CRAM-MD5
DIGEST-MD5
JIVE-SHAREDSECRET
PLAIN

DNS

SRV records _xmpp-client._tcp.barwah.net BOGUS DNSSEC

Priority Weight Port Server

TLSA records

_5222._tcp.barwah.net BOGUS DNSSEC

TLS

barwah.net:5222

Certificates

#0 barwah.net

Subject
commonName
barwah.net
organizationalUnitName
Domain Control Validated
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2017-08-23 07:05:00 UTC
Valid to
2019-09-02 07:42:38 UTC
CRL
http://crl.godaddy.com/gdig2s1-663.crl
OCSP
http://ocsp.godaddy.com/
Valid for barwah.net
YES
DE:0F:8E:6F:7A:EA:78:51:22:CA:CE:78:B1:E0:CE:CE:BE:D4:CE:76
Subject Alternative Names
DNSName
barwah.net Matches
DNSName
www.barwah.net

#1 Go Daddy Secure Certificate Authority - G2

Subject
commonName
Go Daddy Secure Certificate Authority - G2
countryName
US
localityName
Scottsdale
organizationalUnitName
http://certs.godaddy.com/repository/
organizationName
GoDaddy.com, Inc.
stateOrProvinceName
Arizona
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2011-05-03 07:00:00 UTC
Valid to
2031-05-03 07:00:00 UTC
CRL
http://crl.godaddy.com/gdroot-g2.crl
OCSP
http://ocsp.godaddy.com/
27:AC:93:69:FA:F2:52:07:BB:26:27:CE:FA:CC:BE:4E:F9:C3:19:B8

Go Daddy Root Certificate Authority - G2

Subject
commonName
Go Daddy Root Certificate Authority - G2
countryName
US
localityName
Scottsdale
organizationName
GoDaddy.com, Inc.
stateOrProvinceName
Arizona
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-01-01 07:00:00 UTC
Valid to
2031-05-30 07:00:00 UTC
CRL
http://crl.godaddy.com/gdroot.crl
OCSP
http://ocsp.godaddy.com/
34:0B:28:80:F4:46:FC:C0:4E:59:ED:33:F5:2B:3D:08:D6:24:29:64

The Go Daddy Group, Inc.

Subject
countryName
US
organizationalUnitName
Go Daddy Class 2 Certification Authority
organizationName
The Go Daddy Group, Inc.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2004-06-29 17:06:20 UTC
Valid to
2034-06-29 17:06:20 UTC 
27:96:BA:E6:3F:18:01:E2:77:26:1B:A0:D7:77:70:02:8F:20:EE:E4

#2 Go Daddy Root Certificate Authority - G2

Subject
commonName
Go Daddy Root Certificate Authority - G2
countryName
US
localityName
Scottsdale
organizationName
GoDaddy.com, Inc.
stateOrProvinceName
Arizona
Details
Warning: Certificate is unused.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2009-09-01 00:00:00 UTC
Valid to
2037-12-31 23:59:59 UTC 
47:BE:AB:C9:22:EA:E8:0E:78:78:34:62:A7:9F:45:C2:54:FD:E6:8B

Protocols

SSLv2 No
SSLv3 Yes
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: sect571r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: sect571r1
ECDHE-RSA-RC4-SHA (0xc011) 128 Yes Curve: sect571r1
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DHE-DSS-AES128-SHA256 (0x40) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DHE-DSS-AES128-SHA (0x32) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
RC4-MD5 (0x10080) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK 112 Yes Curve: sect571r1
EDH-RSA-DES-CBC3-SHA (0x16) WEAK 112 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
EDH-DSS-DES-CBC3-SHA (0x13) WEAK 112 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DES-CBC3-SHA (0xa) WEAK 112 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=barwah.net&amp;type=client'><img src='https://xmpp.net/badge.php?domain=barwah.net' alt='xmpp.net score' /></a>

Some rights reserved.