IM Observatory client report for casablanca.cz

Test started 2021-05-26 18:10:13 UTC .

Show server to server result | Permalink to this report |

im.casablanca.cz:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
im.casablanca.cz:5222
StartTLS
ALLOWED

SASL

Pre-TLS
PLAIN
Post-TLS
PLAIN

SRV records _xmpp-client._tcp.casablanca.cz DNSSEC

Priority Weight Port Server
0 0 5222 im.casablanca.cz

TLSA records

Certificates

Subject
commonName
im.casablanca.cz
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2021-05-04 06:39:22 UTC
Valid to
2021-08-02 06:39:22 UTC
OCSP
http://r3.o.lencr.org
Valid for casablanca.cz
NO
3A:E4:B2:C5:D1:DD:D9:52:DD:B1:88:95:B5:96:F8:9C:F8:C2:60:79
Subject Alternative Names
DNSName
im.casablanca.cz
Subject
commonName
R3
countryName
US
organizationName
Let's Encrypt
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2020-09-04 00:00:00 UTC
Valid to
2025-09-15 16:00:00 UTC
CRL
http://x1.c.lencr.org/
A0:53:37:5B:FE:84:E8:B7:48:78:2C:7C:EE:15:82:7A:6A:F5:A4:05
Subject
commonName
ISRG Root X1
countryName
US
organizationName
Internet Security Research Group
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2021-01-20 19:14:03 UTC
Valid to
2024-09-30 18:14:03 UTC
CRL
http://crl.identrust.com/DSTROOTCAX3CRL.crl
93:3C:6D:DE:E9:5C:9C:41:A4:0F:9F:50:49:3D:82:BE:03:AD:87:BF
Subject
commonName
DST Root CA X3
organizationName
Digital Signature Trust Co.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2000-09-30 21:12:19 UTC
Valid to
2021-09-30 14:01:15 UTC
DA:C9:02:4F:54:D8:F6:DF:94:93:5F:B1:73:26:38:CA:6A:D7:7C:13

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=casablanca.cz&amp;type=client'><img src='https://xmpp.net/badge.php?domain=casablanca.cz' alt='xmpp.net score' /></a>