IM Observatory server report for muc.home.floatblog.de
Test started 2019-01-07 17:05:16 UTC .
Show client to server result | Permalink to this report |
Score
muc.home.floatblog.de:5269
Grade:
T
Grade T: Certificate is not trusted, but ignoring trust would score an A.
General
muc.home.floatblog.de:5269
- StartTLS
- ALLOWED
- Peer certificate
- The server requires incoming s2s connections to present a peer certificate.
DNS
SRV records _xmpp-server._tcp.muc.home.floatblog.de BOGUS DNSSEC
| Priority | Weight | Port | Server |
|---|
TLSA records
_5269._tcp.muc.home.floatblog.de BOGUS DNSSEC
TLS
muc.home.floatblog.de:5269
Certificates
#0 *.floatblog.de
Subject
- commonName
- *.floatblog.de
Details
- Signature algorithm
- sha512WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2017-11-23 11:09:04 UTC
- Valid to
- 2019-11-23 11:09:04 UTC
- CRL
- http://crl.cacert.org/class3-revoke.crl
- OCSP
- http://ocsp.cacert.org/
- Valid for muc.home.floatblog.de
- NO
D4:73:54:33:0C:CF:A6:3D:4B:EE:64:0B:0E:4F:A3:9A:E3:B6:4C:29
Subject Alternative Names
- DNSName
- *.floatblog.de
- XMPPAddr
- *.floatblog.de
#1 CAcert Class 3 Root
Subject
- commonName
- CAcert Class 3 Root
- organizationalUnitName
- http://www.CAcert.org
- organizationName
- CAcert Inc.
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2011-05-23 17:48:02 UTC
- Valid to
- 2021-05-20 17:48:02 UTC
- OCSP
- http://ocsp.CAcert.org/
AD:7C:3F:64:FC:44:39:FE:F4:E9:0B:E8:F4:7C:6C:FA:8A:AD:FD:CE
CA Cert Signing Authority
Subject
- commonName
- CA Cert Signing Authority
- emailAddress
- support@cacert.org
- organizationalUnitName
- http://www.cacert.org
- organizationName
- Root CA
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2003-03-30 12:29:49 UTC
- Valid to
- 2033-03-29 12:29:49 UTC
- CRL
- http://crl.cacert.org/revoke.crl
- OCSP
- http://ocsp.cacert.org
DD:FC:DA:54:1E:75:77:AD:DC:A8:7E:88:27:A9:8A:50:60:32:52:A5
#2 CA Cert Signing Authority
Subject
- commonName
- CA Cert Signing Authority
- emailAddress
- support@cacert.org
- organizationalUnitName
- http://www.cacert.org
- organizationName
- Root CA
Details
Warning: Certificate is unused.
Error: self signed certificate in certificate chain.
- Signature algorithm
- md5WithRSAEncryption INSECURE
- Public key
- 4096 bit RSA
- Valid from
- 2003-03-30 12:29:49 UTC
- Valid to
- 2033-03-29 12:29:49 UTC
- CRL
- https://www.cacert.org/revoke.crl
13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33
Protocols
| SSLv2 | No |
| SSLv3 | No |
| TLSv1 | No |
| TLSv1.1 | No |
| TLSv1.2 | Yes |
Ciphers
Server does not respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| ECDHE-RSA-AES256-GCM-SHA384 (0xc030) | 256 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) | 128 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES256-SHA384 (0xc028) | 256 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES128-SHA256 (0xc027) | 128 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES256-SHA (0xc014) | 256 | Yes | Curve: secp384r1 |
| ECDHE-RSA-AES128-SHA (0xc013) | 128 | Yes | Curve: secp384r1 |
| AES256-GCM-SHA384 (0x9d) | 256 | No | - |
| AES128-GCM-SHA256 (0x9c) | 128 | No | - |
| AES256-SHA256 (0x3d) | 256 | No | - |
| AES128-SHA256 (0x3c) | 128 | No | - |
| AES256-SHA (0x35) | 256 | No | - |
| CAMELLIA256-SHA (0x84) | 256 | No | - |
| AES128-SHA (0x2f) | 128 | No | - |
| CAMELLIA128-SHA (0x41) | 128 | No | - |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=muc.home.floatblog.de&type=server'><img src='https://xmpp.net/badge.php?domain=muc.home.floatblog.de' alt='xmpp.net score' /></a>