IM Observatory client report for roddewig-online.de

Test started 2018-10-07 11:25:01 UTC .

Show server to server result | Permalink to this report | Retest

roddewig-online.de:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Server uses an RSA key with < 2048 bits. Grade capped to B.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
roddewig-online.de:5222
StartTLS
ALLOWED

SASL

Pre-TLS
DIGEST-MD5
PLAIN
Post-TLS
DIGEST-MD5
PLAIN

SRV records _xmpp-client._tcp.roddewig-online.de NO DNSSEC

Priority Weight Port Server
0 5 5222 roddewig-online.de

TLSA records

Certificates

Subject
commonName
ejabberd
emailAddress
root@mail.bunti.loc
organizationalUnitName
mail
organizationName
bunti.loc
Details
Error: certificate has expired.
Error: self signed certificate.
Signature algorithm
sha1WithRSAEncryption
Public key
1024 bit RSA WEAK
Valid from
2014-12-26 13:33:40 UTC
Valid to
2015-12-26 13:33:40 UTC
Valid for roddewig-online.de
NO
E4:5A:E5:E6:B5:B0:35:7A:44:20:E3:66:7B:61:F9:2B:92:12:93:7D

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=roddewig-online.de&amp;type=client'><img src='https://xmpp.net/badge.php?domain=roddewig-online.de' alt='xmpp.net score' /></a>