IM Observatory client report for openfire.almg.gov.br
Test started 2019-01-07 12:26:57 UTC .
Show server to server result | Permalink to this report |
Score
openfire.almg.gov.br:5222
Grade:
F
Certificate is not trusted, grade capped to F. Ignoring trust: C.
Server does not support TLS 1.2. Grade capped to C.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
General
openfire.almg.gov.br:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
| PLAIN |
Post-TLS
| PLAIN |
DNS
SRV records _xmpp-client._tcp.openfire.almg.gov.br BOGUS DNSSEC
| Priority | Weight | Port | Server |
|---|
TLSA records
_5222._tcp.openfire.almg.gov.br BOGUS DNSSEC
TLS
openfire.almg.gov.br:5222
Certificates
#0 *.almg.gov.br
Subject
- commonName
- *.almg.gov.br
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2018-09-14 00:00:00 UTC
- Valid to
- 2020-09-13 12:00:00 UTC
- CRL
- http://cdp.rapidssl.com/RapidSSLRSACA2018.crl
- OCSP
- http://status.rapidssl.com
- Valid for openfire.almg.gov.br
- YES
22:1E:C1:AF:28:C7:9F:E9:43:A5:4C:1E:E0:6F:60:A0:8A:C9:B1:3F
Subject Alternative Names
- DNSName
- *.almg.gov.br
- DNSName
- almg.gov.br
RapidSSL RSA CA 2018
Subject
- commonName
- RapidSSL RSA CA 2018
- countryName
- US
- organizationalUnitName
- www.digicert.com
- organizationName
- DigiCert Inc
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2017-11-06 12:23:33 UTC
- Valid to
- 2027-11-06 12:23:33 UTC
- CRL
- http://crl3.digicert.com/DigiCertGlobalRootCA.crl
- OCSP
- http://ocsp.digicert.com
98:C6:A8:DC:88:79:63:BA:3C:F9:C2:73:1C:BD:D3:F7:DE:05:AC:2D
DigiCert Global Root CA
Subject
- commonName
- DigiCert Global Root CA
- countryName
- US
- organizationalUnitName
- www.digicert.com
- organizationName
- DigiCert Inc
Details
- Signature algorithm
- sha1WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2006-11-10 00:00:00 UTC
- Valid to
- 2031-11-10 00:00:00 UTC
A8:98:5D:3A:65:E5:E5:C4:B2:D7:D6:6D:40:C6:DD:2F:B1:9C:54:36
Protocols
| SSLv2 | No |
| SSLv3 | No |
| TLSv1 | Yes |
| TLSv1.1 | No |
| TLSv1.2 | No |
Ciphers
Server does respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| ECDHE-RSA-AES128-SHA (0xc013) | 128 | Yes | Curve: secp521r1 |
| ECDHE-RSA-RC4-SHA (0xc011) | 128 | Yes | Curve: secp521r1 |
| DHE-RSA-AES128-SHA (0x33) | 128 | Yes |
Diffie-Hellman: Bitsize: 1024 |
| RC4-MD5 (0x10080) | 128 | No | - |
| AES128-SHA (0x2f) | 128 | No | - |
| RC4-SHA (0x5) | 128 | No | - |
| ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK | 112 | Yes | Curve: secp521r1 |
| EDH-RSA-DES-CBC3-SHA (0x16) WEAK | 112 | Yes |
Diffie-Hellman: Bitsize: 1024 |
| DES-CBC3-SHA (0xa) WEAK | 112 | No | - |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=openfire.almg.gov.br&type=client'><img src='https://xmpp.net/badge.php?domain=openfire.almg.gov.br' alt='xmpp.net score' /></a>