IM Observatory client report for jfsc.jus.br

Test started 2018-06-22 13:31:11 UTC .

Show server to server result | Permalink to this report | Retest

comunicador.jfsc.jus.br:5222
Certificate is not trusted, grade capped to F. Ignoring trust: B.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
comunicador.jfsc.jus.br:5222
StartTLS
ALLOWED

SASL

Pre-TLS
GSSAPI
PLAIN
Post-TLS
GSSAPI
PLAIN

SRV records _xmpp-client._tcp.jfsc.jus.br DNSSEC

Priority Weight Port Server
10 0 5222 comunicador.jfsc.jus.br

TLSA records

Certificates

Subject
commonName
*.jfsc.jus.br
countryName
BR
localityName
FLORIANOPOLIS
organizationalUnitName
TI
organizationName
Justica Federal de Primeiro Grau em Santa Catarina
stateOrProvinceName
SANTA CATARINA
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-04-02 17:29:16 UTC
Valid to
2019-04-02 17:29:16 UTC
CRL
http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl
OCSP
http://ocsp2.globalsign.com/gsorganizationvalsha2g2
Valid for jfsc.jus.br
YES
08:42:21:CC:B2:38:0A:77:2E:E5:CD:5B:4E:90:1A:57:48:5B:CE:A6
Subject Alternative Names
DNSName
*.jfsc.jus.br
DNSName
jfsc.jus.br Matches
Subject
commonName
GlobalSign Organization Validation CA - SHA256 - G2
countryName
BE
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-02-20 10:00:00 UTC
Valid to
2024-02-20 10:00:00 UTC
CRL
http://crl.globalsign.net/root.crl
OCSP
http://ocsp.globalsign.com/rootr1
90:2E:F2:DE:EB:3C:5B:13:EA:4C:3D:51:93:62:93:09:E2:31:AE:55
Subject
commonName
GlobalSign Root CA
countryName
BE
organizationalUnitName
Root CA
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1998-09-01 12:00:00 UTC
Valid to
2028-01-28 12:00:00 UTC
B1:BC:96:8B:D4:F4:9D:62:2A:A8:9A:81:F2:15:01:52:A4:1D:82:9C

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: secp521r1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: secp521r1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: secp521r1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: secp521r1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: secp521r1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: secp521r1
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK 112 Yes Curve: secp521r1
EDH-RSA-DES-CBC3-SHA (0x16) WEAK 112 Yes Diffie-Hellman:
Group: RFC 2409 First Oakley Default Group
Bitsize: 1024
DES-CBC3-SHA (0xa) WEAK 112 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=jfsc.jus.br&amp;type=client'><img src='https://xmpp.net/badge.php?domain=jfsc.jus.br' alt='xmpp.net score' /></a>