IM Observatory client report for im.i-ntarsia.com

Test started 2018-06-16 20:08:09 UTC .

Show server to server result | Permalink to this report | Retest

im.i-ntarsia.com:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
im.i-ntarsia.com:5222
StartTLS
ALLOWED

SASL

Pre-TLS
DIGEST-MD5
PLAIN
Post-TLS
DIGEST-MD5
PLAIN

SRV records _xmpp-client._tcp.im.i-ntarsia.com NO DNSSEC

Priority Weight Port Server

TLSA records

Certificates

Subject
commonName
*.i-ntarsia.com
countryName
GB
localityName
Reading
organizationName
I-Next Ltd.
stateOrProvinceName
Berkshire
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2017-11-29 00:00:00 UTC
Valid to
2019-02-28 23:59:59 UTC
CRL
http://gn.symcb.com/gn.crl
OCSP
http://gn.symcd.com
Valid for im.i-ntarsia.com
YES
A0:A9:A4:E8:D8:D2:BE:B5:D5:43:BC:D0:AF:C3:F9:C4:9E:A6:20:C7
Subject Alternative Names
DNSName
*.i-ntarsia.com
DNSName
i-ntarsia.com
Subject
commonName
GeoTrust SSL CA - G3
countryName
US
organizationName
GeoTrust Inc.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2013-11-05 21:36:50 UTC
Valid to
2022-05-20 21:36:50 UTC
CRL
http://g1.symcb.com/crls/gtglobal.crl
OCSP
http://g2.symcb.com
5A:EA:EE:3F:7F:2A:94:49:CE:BA:FE:EC:68:FD:D1:84:F2:01:24:A7
Subject
commonName
GeoTrust Global CA
countryName
US
organizationName
GeoTrust Inc.
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2002-05-21 04:00:00 UTC
Valid to
2018-08-21 04:00:00 UTC
CRL
http://crl.geotrust.com/crls/secureca.crl
73:59:75:5C:6D:F9:A0:AB:C3:06:0B:CE:36:95:64:C8:EC:45:42:A3
Subject
countryName
US
organizationalUnitName
Equifax Secure Certificate Authority
organizationName
Equifax
Details
Signature algorithm
sha1WithRSAEncryption
Public key
1024 bit RSA WEAK
Valid from
1998-08-22 16:41:51 UTC
Valid to
2018-08-22 16:41:51 UTC
D2:32:09:AD:23:D3:14:23:21:74:E4:0D:7F:9D:62:13:97:86:63:3A

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=im.i-ntarsia.com&amp;type=client'><img src='https://xmpp.net/badge.php?domain=im.i-ntarsia.com' alt='xmpp.net score' /></a>