IM Observatory client report for tuxpower.org

Test started 2018-07-18 17:11:20 UTC .

Show server to server result | Permalink to this report | Retest

jabber.tuxpower.org:5222
Grade T: Certificate is not trusted, but ignoring trust would score an A.
jabber.tuxpower.org:5222
StartTLS
ALLOWED

SASL

Pre-TLS
DIGEST-MD5
PLAIN
SCRAM-SHA-1
X-OAUTH2
Post-TLS
DIGEST-MD5
PLAIN
SCRAM-SHA-1
X-OAUTH2

SRV records _xmpp-client._tcp.tuxpower.org NO DNSSEC

Priority Weight Port Server
10 0 5222 jabber.tuxpower.org

TLSA records

Certificates

Subject
commonName
tuxpower.org
Details
Signature algorithm
sha512WithRSAEncryption
Public key
4096 bit RSA
Valid from
2017-10-22 16:24:01 UTC
Valid to
2019-10-22 16:24:01 UTC
CRL
http://crl.cacert.org/class3-revoke.crl
OCSP
http://ocsp.cacert.org/
Valid for tuxpower.org
YES
48:84:80:B1:4E:40:F5:4F:AF:D4:7B:47:1F:C3:1E:77:CB:EC:C3:B9
Subject Alternative Names
DNSName
tuxpower.org Matches
XMPPAddr
tuxpower.org Matches
Subject
commonName
CAcert Class 3 Root
organizationalUnitName
http://www.CAcert.org
organizationName
CAcert Inc.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2011-05-23 17:48:02 UTC
Valid to
2021-05-20 17:48:02 UTC
OCSP
http://ocsp.CAcert.org/
AD:7C:3F:64:FC:44:39:FE:F4:E9:0B:E8:F4:7C:6C:FA:8A:AD:FD:CE
Subject
commonName
CA Cert Signing Authority
emailAddress
support@cacert.org
organizationalUnitName
http://www.cacert.org
organizationName
Root CA
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2003-03-30 12:29:49 UTC
Valid to
2033-03-29 12:29:49 UTC
CRL
http://crl.cacert.org/revoke.crl
OCSP
http://ocsp.cacert.org
DD:FC:DA:54:1E:75:77:AD:DC:A8:7E:88:27:A9:8A:50:60:32:52:A5
Subject
commonName
CA Cert Signing Authority
emailAddress
support@cacert.org
organizationalUnitName
http://www.cacert.org
organizationName
Root CA
Details
Warning: Certificate is unused.
Error: self signed certificate in certificate chain.
Signature algorithm
md5WithRSAEncryption INSECURE
Public key
4096 bit RSA
Valid from
2003-03-30 12:29:49 UTC
Valid to
2033-03-29 12:29:49 UTC
CRL
https://www.cacert.org/revoke.crl
13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: prime256v1
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=tuxpower.org&amp;type=client'><img src='https://xmpp.net/badge.php?domain=tuxpower.org' alt='xmpp.net score' /></a>