IM Observatory client report for jabber.lerabling.org

Test started 2018-08-21 04:04:49 UTC .

Show server to server result | Permalink to this report

jabber.lerabling.org:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server does not support TLS 1.2. Grade capped to C.
Server does not support TLS 1.0 or better. Grade capped to F.
Server supports SSL 3. Grade capped to B.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
jabber.lerabling.org:5222
StartTLS
REQUIRED

SASL

Pre-TLS
ANONYMOUS
JIVE-SHAREDSECRET
PLAIN
Post-TLS
ANONYMOUS
JIVE-SHAREDSECRET
PLAIN

SRV records _xmpp-client._tcp.jabber.lerabling.org NO DNSSEC

Priority Weight Port Server

TLSA records

Certificates

Subject
commonName
*.lerabling.org
organizationalUnitName
Domain Control Validated
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2017-03-22 11:08:15 UTC
Valid to
2020-03-22 11:08:15 UTC
CRL
http://crl2.alphassl.com/gs/gsalphasha2g2.crl
OCSP
http://ocsp2.globalsign.com/gsalphasha2g2
Valid for jabber.lerabling.org
YES
D0:23:13:15:95:65:CC:28:2C:D5:CB:3A:61:9B:2B:6D:CB:71:D8:D3
Subject Alternative Names
DNSName
*.lerabling.org
DNSName
lerabling.org
Subject
commonName
AlphaSSL CA - SHA256 - G2
countryName
BE
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-02-20 10:00:00 UTC
Valid to
2024-02-20 10:00:00 UTC
CRL
http://crl.globalsign.net/root.crl
OCSP
http://ocsp.globalsign.com/rootr1
4C:27:43:17:17:56:5A:3A:07:F3:E6:D0:03:2C:42:58:94:9C:F9:EC
Subject
commonName
GlobalSign Root CA
countryName
BE
organizationalUnitName
Root CA
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1998-09-01 12:00:00 UTC
Valid to
2028-01-28 12:00:00 UTC
B1:BC:96:8B:D4:F4:9D:62:2A:A8:9A:81:F2:15:01:52:A4:1D:82:9C

Protocols

SSLv2 No
SSLv3 Yes
TLSv1 No
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
AES256-SHA (0x35) 256 No -
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
ECDHE-RSA-RC4-SHA (0xc011) 128 Yes Curve: prime256v1
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK 112 Yes Curve: prime256v1
EDH-RSA-DES-CBC3-SHA (0x16) WEAK 112 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DES-CBC3-SHA (0xa) WEAK 112 No -
EDH-RSA-DES-CBC-SHA (0x15) VERY WEAK 56 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-EDH-RSA-DES-CBC-SHA (0x14) VERY WEAK 40 Yes Diffie-Hellman:
Group: Java sun.security.provider default 512-bit prime
Bitsize: 512
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-DES-CBC-SHA (0x8) VERY WEAK 40 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=jabber.lerabling.org&amp;type=client'><img src='https://xmpp.net/badge.php?domain=jabber.lerabling.org' alt='xmpp.net score' /></a>