IM Observatory server report for marieg.de

Test started 2018-06-22 05:09:20 UTC .

Show client to server result | Permalink to this report | Retest

jabber.rz3.wg1337.de:5269
Certificate is not trusted, grade capped to F. Ignoring trust: D.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
jabber.rz3.wg1337.de:5269
StartTLS
ALLOWED

SRV records _xmpp-server._tcp.marieg.de NO DNSSEC

Priority Weight Port Server
5 0 5269 jabber.rz3.wg1337.de

TLSA records

Certificates

Subject
commonName
xmpp.rz.wg1337.de
countryName
DE
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2017-08-16 18:36:53 UTC
Valid to
2019-08-16 10:46:00 UTC
CRL
http://crl.startcomca.com/sca-server1.crl
OCSP
http://ocsp.startcomca.com
Valid for marieg.de
YES
DB:D7:18:6F:7B:17:2F:75:AE:D3:7F:5C:CD:D3:37:02:D6:84:C9:9E
Subject Alternative Names
DNSName
xmpp.rz.wg1337.de
DNSName
zivillian.de
DNSName
marieg.de Matches
DNSName
wg1337.de
DNSName
jabber.zivillian.de
DNSName
jabber.rz3.wg1337.de
Subject
commonName
StartCom BR SSL ICA
countryName
ES
organizationalUnitName
StartCom Certification Authority
organizationName
StartCom CA
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2017-04-07 12:32:39 UTC
Valid to
2042-03-22 07:17:58 UTC
CRL
http://crl.startcomca.com/sfscabr.crl
OCSP
http://ocsp.startcomca.com
37:7B:35:1C:CB:87:A4:F5:F1:D3:99:78:56:13:15:CD:46:0D:67:1A
Subject
commonName
StartCom Certification Authority G3
countryName
ES
organizationName
StartCom CA
Details
Error: self signed certificate in certificate chain.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2017-03-22 07:19:56 UTC
Valid to
2042-03-22 07:17:58 UTC
68:9A:12:29:D6:98:D1:72:E9:9E:1B:F0:0B:9C:19:85:41:19:C9:FC
Subject
commonName
StartCom Certification Authority G3
countryName
ES
organizationName
StartCom CA
Details
Warning: Certificate is unused.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2017-04-11 07:30:01 UTC
Valid to
2022-04-11 07:30:01 UTC
CRL
http://crl.startssl.com/sfsca.crl
OCSP
http://ocsp.startssl.com
33:BE:EB:5F:56:F3:79:EC:E0:BA:4D:A6:C1:A3:CC:2B:35:78:FC:7B

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
AECDH-AES256-SHA (0xc019) 256 No Curve: prime256v1
ADH-AES256-GCM-SHA384 (0xa7) 256 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-CAMELLIA256-SHA (0x89) 256 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-AES256-SHA256 (0x6d) 256 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-AES256-SHA (0x3a) 256 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-SEED-SHA (0x9a) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
AECDH-AES128-SHA (0xc018) 128 No Curve: prime256v1
ADH-AES128-GCM-SHA256 (0xa6) 128 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-SEED-SHA (0x9b) 128 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-AES128-SHA256 (0x6c) 128 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-CAMELLIA128-SHA (0x46) 128 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ADH-AES128-SHA (0x34) 128 No Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
ECDHE-RSA-NULL-SHA (0xc010) VERY WEAK 0 Yes Curve: prime256v1
AECDH-NULL-SHA (0xc015) VERY WEAK 0 No Curve: prime256v1

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=marieg.de&amp;type=server'><img src='https://xmpp.net/badge.php?domain=marieg.de' alt='xmpp.net score' /></a>