IM Observatory client report for openfire.almg.gov.br
Test started 2019-01-07 12:26:57 UTC .
Show server to server result | Permalink to this report
|
openfire.almg.gov.br:5222
Certificate is not trusted, grade capped to F. Ignoring trust: C.
Server does not support TLS 1.2. Grade capped to C.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
openfire.almg.gov.br:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
Post-TLS
SRV records
_xmpp-client._tcp.openfire.almg.gov.br BOGUS DNSSEC
Priority |
Weight |
Port |
Server |
TLSA records
Certificates
Subject
- commonName
- *.almg.gov.br
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2018-09-14 00:00:00 UTC
- Valid to
- 2020-09-13 12:00:00 UTC
- CRL
- http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
- OCSP
- http://status.rapidssl.com
- Valid for openfire.almg.gov.br
- YES
-
22:1E:C1:AF:28:C7:9F:E9:43:A5:4C:1E:E0:6F:60:A0:8A:C9:B1:3F
Subject Alternative Names
- DNSName
- *.almg.gov.br
- DNSName
- almg.gov.br
Subject
- commonName
- RapidSSL RSA CA 2018
- countryName
- US
- organizationalUnitName
- www.digicert.com
- organizationName
- DigiCert Inc
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2017-11-06 12:23:33 UTC
- Valid to
- 2027-11-06 12:23:33 UTC
- CRL
- http://crl3.digicert.com/DigiCertGlobalRootCA.crl
- OCSP
- http://ocsp.digicert.com
-
98:C6:A8:DC:88:79:63:BA:3C:F9:C2:73:1C:BD:D3:F7:DE:05:AC:2D
Subject
- commonName
- DigiCert Global Root CA
- countryName
- US
- organizationalUnitName
- www.digicert.com
- organizationName
- DigiCert Inc
Details
- Signature algorithm
- sha1WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2006-11-10 00:00:00 UTC
- Valid to
- 2031-11-10 00:00:00 UTC
-
A8:98:5D:3A:65:E5:E5:C4:B2:D7:D6:6D:40:C6:DD:2F:B1:9C:54:36
Protocols
SSLv2 |
No |
SSLv3 |
No |
TLSv1 |
Yes |
TLSv1.1 |
No |
TLSv1.2 |
No |
Ciphers
Server does respect the client's cipher ordering.
Cipher suite | Bitsize | Forward secrecy | Info |
ECDHE-RSA-AES128-SHA (0xc013) |
128
|
Yes
|
Curve: secp521r1
|
ECDHE-RSA-RC4-SHA (0xc011) |
128
|
Yes
|
Curve: secp521r1
|
DHE-RSA-AES128-SHA (0x33) |
128
|
Yes
|
Diffie-Hellman:
Bitsize: 1024
|
RC4-MD5 (0x10080) |
128
|
No
|
-
|
AES128-SHA (0x2f) |
128
|
No
|
-
|
RC4-SHA (0x5) |
128
|
No
|
-
|
ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK |
112
|
Yes
|
Curve: secp521r1
|
EDH-RSA-DES-CBC3-SHA (0x16) WEAK |
112
|
Yes
|
Diffie-Hellman:
Bitsize: 1024
|
DES-CBC3-SHA (0xa) WEAK |
112
|
No
|
-
|
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=openfire.almg.gov.br&type=client'><img src='https://xmpp.net/badge.php?domain=openfire.almg.gov.br' alt='xmpp.net score' /></a>