IM Observatory client report for gil.mn
Test started 2018-12-16 15:06:05 UTC .
Show server to server result | Permalink to this report | Retest
Score
gil.mn:5222
Grade:
F
Certificate is not trusted, grade capped to F. Ignoring trust: C.
Warning: Server allows RC4 when using TLS 1.1 and/or TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
General
gil.mn:5222
- StartTLS
- ALLOWED
SASL
Pre-TLS
| DIGEST-MD5 |
| PLAIN |
| SCRAM-SHA-1 |
Post-TLS
| DIGEST-MD5 |
| PLAIN |
| SCRAM-SHA-1 |
DNS
SRV records _xmpp-client._tcp.gil.mn BOGUS DNSSEC
| Priority | Weight | Port | Server |
|---|
TLSA records
_5222._tcp.gil.mn BOGUS DNSSEC
TLS
gil.mn:5222
Certificates
#0 xmpp.gil.mn
Subject
- commonName
- xmpp.gil.mn
- countryName
- US
- emailAddress
- 7uz8r54srk84wx3@proxy.dreamhost.com
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2015-06-15 14:58:23 UTC
- Valid to
- 2016-06-15 04:24:30 UTC
- CRL
- http://crl.startssl.com/crt1-crl.crl
- OCSP
- http://ocsp.startssl.com/sub/class1/server/ca
- Valid for gil.mn
- YES
36:2A:98:1B:D1:CF:50:58:18:AA:77:73:26:A6:CF:D2:74:E1:25:F9
Subject Alternative Names
- DNSName
- xmpp.gil.mn
- DNSName
- gil.mn Matches
- SRVName
- xmpp.gil.mn
- SRVName
- gil.mn
- XMPPAddr
- xmpp.gil.mn
- XMPPAddr
- gil.mn Matches
StartCom Class 1 Primary Intermediate Server CA
Subject
- commonName
- StartCom Class 1 Primary Intermediate Server CA
- countryName
- IL
- organizationalUnitName
- Secure Digital Certificate Signing
- organizationName
- StartCom Ltd.
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2007-10-24 20:54:17 UTC
- Valid to
- 2017-10-24 20:54:17 UTC
- CRL
- http://crl.startssl.com/sfsca.crl
- OCSP
- http://ocsp.startssl.com/ca
C9:B4:9E:76:BF:A9:AD:74:3A:E8:97:39:EC:B8:E4:87:C2:AC:67:5B
StartCom Certification Authority
Subject
- commonName
- StartCom Certification Authority
- countryName
- IL
- organizationalUnitName
- Secure Digital Certificate Signing
- organizationName
- StartCom Ltd.
Details
- Signature algorithm
- sha1WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2006-09-17 19:46:36 UTC
- Valid to
- 2036-09-17 19:46:36 UTC
- CRL
- http://crl.startcom.org/sfsca-crl.crl
3E:2B:F7:F2:03:1B:96:F3:8C:E6:C4:D8:A8:5D:3E:2D:58:47:6A:0F
Protocols
| SSLv2 | No |
| SSLv3 | Yes |
| TLSv1 | Yes |
| TLSv1.1 | Yes |
| TLSv1.2 | Yes |
Ciphers
Server does respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| AES256-GCM-SHA384 (0x9d) | 256 | No | - |
| CAMELLIA256-SHA (0x84) | 256 | No | - |
| AES256-SHA256 (0x3d) | 256 | No | - |
| AES256-SHA (0x35) | 256 | No | - |
| RC4-MD5 (0x10080) | 128 | No | - |
| AES128-GCM-SHA256 (0x9c) | 128 | No | - |
| SEED-SHA (0x96) | 128 | No | - |
| CAMELLIA128-SHA (0x41) | 128 | No | - |
| AES128-SHA256 (0x3c) | 128 | No | - |
| AES128-SHA (0x2f) | 128 | No | - |
| RC4-SHA (0x5) | 128 | No | - |
| DES-CBC3-SHA (0xa) WEAK | 112 | No | - |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=gil.mn&type=client'><img src='https://xmpp.net/badge.php?domain=gil.mn' alt='xmpp.net score' /></a>