IM Observatory client report for im.secureclouddesign.com

Test started 2019-02-25 23:48:14 UTC .

Show server to server result | Permalink to this report |

im.secureclouddesign.com:5222

Certificate score:

Key exchange score:

Protocol score:

Cipher score:

Grade:

Certificate is not trusted, grade capped to F. Ignoring trust: C.

Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.

im.secureclouddesign.com:5222

StartTLS: REQUIRED

SASL

Pre-TLS

Post-TLS

SRV records _xmpp-client._tcp.im.secureclouddesign.com NO DNSSEC

Priority	Weight	Port	Server

TLSA records

Certificates

Subject

commonName: secureclouddesign.com

Details

Error: unable to get local issuer certificate.

Error: unable to verify the first certificate.

Signature algorithm

sha256WithRSAEncryption

Public key

2048 bit RSA

Valid from

2019-02-24 21:03:14 UTC

Valid to

2019-05-25 21:03:14 UTC

OCSP

http://ocsp.int-x3.letsencrypt.org

Valid for im.secureclouddesign.com

YES

21:4F:E5:3F:EA:37:D1:9C:6E:D8:B8:9B:08:15:B3:A5:98:F6:AE:AE

Subject Alternative Names

DNSName: im.secureclouddesign.com Matches
DNSName: secureclouddesign.com

Subject

commonName: Let's Encrypt Authority X3
countryName: US
organizationName: Let's Encrypt

Details

Signature algorithm

sha256WithRSAEncryption

Public key

2048 bit RSA

Valid from

2016-10-06 15:43:55 UTC

Valid to

2021-10-06 15:43:55 UTC

CRL

http://crl.root-x1.letsencrypt.org

OCSP

http://ocsp.root-x1.letsencrypt.org/

1B:23:67:53:54:FC:AD:90:11:9D:88:07:50:15:EA:17:AD:D5:27:D8

Subject

commonName: ISRG Root X1
countryName: US
organizationName: Internet Security Research Group

Details

Signature algorithm

sha256WithRSAEncryption

Public key

4096 bit RSA

Valid from

2015-06-04 11:04:38 UTC

Valid to

2035-06-04 11:04:38 UTC

CA:BD:2A:79:A1:07:6A:31:F2:1D:25:36:35:CB:03:9D:43:29:A5:E8

Protocols

SSLv2	No
SSLv3	No
TLSv1	Yes
TLSv1.1	Yes
TLSv1.2	Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suite	Bitsize	Forward secrecy	Info
ECDHE-RSA-AES256-GCM-SHA384 (0xc030)	256	Yes	Curve: sect571r1
ECDHE-RSA-AES256-SHA384 (0xc028)	256	Yes	Curve: sect571r1
ECDHE-RSA-AES256-SHA (0xc014)	256	Yes	Curve: sect571r1
DHE-RSA-AES256-GCM-SHA384 (0x9f)	256	Yes	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
DHE-RSA-AES256-SHA256 (0x6b)	256	Yes	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
DHE-RSA-AES256-SHA (0x39)	256	Yes	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AECDH-AES256-SHA (0xc019)	256	No	Curve: sect571r1
ADH-AES256-GCM-SHA384 (0xa7)	256	No	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AES256-GCM-SHA384 (0x9d)	256	No	-
ADH-AES256-SHA256 (0x6d)	256	No	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AES256-SHA256 (0x3d)	256	No	-
ADH-AES256-SHA (0x3a)	256	No	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AES256-SHA (0x35)	256	No	-
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f)	128	Yes	Curve: sect571r1
ECDHE-RSA-AES128-SHA256 (0xc027)	128	Yes	Curve: sect571r1
ECDHE-RSA-AES128-SHA (0xc013)	128	Yes	Curve: sect571r1
DHE-RSA-AES128-GCM-SHA256 (0x9e)	128	Yes	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
DHE-RSA-AES128-SHA256 (0x67)	128	Yes	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
DHE-RSA-AES128-SHA (0x33)	128	Yes	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AECDH-AES128-SHA (0xc018)	128	No	Curve: sect571r1
ADH-AES128-GCM-SHA256 (0xa6)	128	No	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AES128-GCM-SHA256 (0x9c)	128	No	-
ADH-AES128-SHA256 (0x6c)	128	No	Diffie-Hellman: Group: RFC 2409 First Oakley Default Group Bitsize: 1024
AES128-SHA256 (0x3c)	128	No	-
AES128-SHA (0x2f)	128	No	-

Badge

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=im.secureclouddesign.com&amp;type=client'><img src='https://xmpp.net/badge.php?domain=im.secureclouddesign.com' alt='xmpp.net score' /></a>

IM Observatory client report for im.secureclouddesign.com

Score

im.secureclouddesign.com:5222

General

im.secureclouddesign.com:5222

SASL

Pre-TLS

Post-TLS

DNS

SRV records _xmpp-client._tcp.im.secureclouddesign.com NO DNSSEC

TLSA records

_5222._tcp.im.secureclouddesign.com NO DNSSEC

TLS

im.secureclouddesign.com:5222

Certificates

#0 secureclouddesign.com

Subject

Details

Subject Alternative Names

Let's Encrypt Authority X3

Subject

Details

ISRG Root X1

Subject

Details

Protocols

Ciphers

Badge