IM Observatory client report for securposta.it

Test started 2018-04-16 13:40:50 UTC .

Show server to server result | Permalink to this report | Retest

im.securposta.it:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Server uses an RSA key with < 2048 bits. Grade capped to B.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
im.securposta.it:5222
StartTLS
ALLOWED

SASL

Pre-TLS
DIGEST-MD5
PLAIN
SCRAM-SHA-1
Post-TLS
DIGEST-MD5
PLAIN
SCRAM-SHA-1

SRV records _xmpp-client._tcp.securposta.it NO DNSSEC

Priority Weight Port Server
0 5 5222 im.securposta.it

TLSA records

Certificates

Subject
commonName
node2
countryName
IT
emailAddress
dontknow
localityName
dontknow
organizationName
dontknow
stateOrProvinceName
dontknow
Details
Error: certificate has expired.
Error: self signed certificate.
Signature algorithm
sha1WithRSAEncryption
Public key
1024 bit RSA WEAK
Valid from
2012-04-19 16:34:18 UTC
Valid to
2015-04-19 16:34:18 UTC
Valid for securposta.it
NO
1B:2A:68:03:3E:76:7B:1D:7E:AC:57:02:2A:15:17:C8:D4:92:60:FA

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=securposta.it&amp;type=client'><img src='https://xmpp.net/badge.php?domain=securposta.it' alt='xmpp.net score' /></a>