IM Observatory client report for wisctest.wisc.edu

Test started 2018-05-19 22:41:38 UTC .

Show server to server result | Permalink to this report | Retest

wisctest.wisc.edu:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
xmpp1.wisctest.wisc.edu:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
xmpp2.wisctest.wisc.edu:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.

Show all 3 SRV targets

wisctest.wisc.edu:5222
StartTLS
REQUIRED

SASL

Pre-TLS
PLAIN
Post-TLS
PLAIN

xmpp1.wisctest.wisc.edu:5222
StartTLS
REQUIRED

SASL

Pre-TLS
PLAIN
Post-TLS
PLAIN

xmpp2.wisctest.wisc.edu:5222
StartTLS
REQUIRED

SASL

Pre-TLS
PLAIN
Post-TLS
PLAIN

Show all 3 SRV targets

SRV records _xmpp-client._tcp.wisctest.wisc.edu NO DNSSEC

Priority Weight Port Server
5 0 5222 wisctest.wisc.edu
10 0 5222 xmpp1.wisctest.wisc.edu
10 0 5222 xmpp2.wisctest.wisc.edu

TLSA records

Show all 3 SRV targets

Certificates

Subject
commonName
wisctest.wisc.edu
countryName
US
localityName
Madison
organizationalUnitName
OCIS
organizationName
University of Wisconsin-Madison
postalCode
53706
stateOrProvinceName
WI
streetAddress
1210 West Dayton Street
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2015-03-06 00:00:00 UTC
Valid to
2018-03-05 23:59:59 UTC
CRL
http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
OCSP
http://ocsp.usertrust.com
Valid for wisctest.wisc.edu
YES
CB:7A:D0:CA:E2:F9:0C:E9:85:94:82:17:80:DD:65:0C:8F:1B:2B:CF
Subject Alternative Names
DNSName
wisctest.wisc.edu Matches
DNSName
conference.openchat.wisctest.wisc.edu
DNSName
conference.wisctest.wisc.edu
DNSName
xmpp.wisctest.wisc.edu
Subject
commonName
InCommon RSA Server CA
countryName
US
localityName
Ann Arbor
organizationalUnitName
InCommon
organizationName
Internet2
stateOrProvinceName
MI
Details
Signature algorithm
sha384WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-10-06 00:00:00 UTC
Valid to
2024-10-05 23:59:59 UTC
CRL
http://crl.usertrust.com/USERTrustRSACertificationAuthority.crl
OCSP
http://ocsp.usertrust.com
F5:FB:01:DE:A6:E5:9C:A6:DD:05:70:54:F4:A3:FF:72:DD:E1:D5:C6
Subject
commonName
USERTrust RSA Certification Authority
countryName
US
localityName
Jersey City
organizationName
The USERTRUST Network
stateOrProvinceName
New Jersey
Details
Signature algorithm
sha384WithRSAEncryption
Public key
4096 bit RSA
Valid from
2000-05-30 10:48:38 UTC
Valid to
2020-05-30 10:48:38 UTC
CRL
http://crl.usertrust.com/AddTrustExternalCARoot.crl
OCSP
http://ocsp.usertrust.com
EA:B0:40:68:9A:0D:80:5B:5D:6F:D6:54:FC:16:8C:FF:00:B7:8B:E3
Subject
commonName
AddTrust External CA Root
countryName
SE
organizationalUnitName
AddTrust External TTP Network
organizationName
AddTrust AB
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1999-06-24 18:57:21 UTC
Valid to
2019-06-24 19:06:30 UTC
CRL
http://crl.usertrust.com/UTN-DATACorpSGC.crl
OCSP
http://ocsp.usertrust.com
53:84:5E:9F:D0:70:B7:AA:36:97:6F:53:6F:F1:44:1C:57:8C:63:D2
Subject
commonName
UTN - DATACorp SGC
countryName
US
localityName
Salt Lake City
organizationalUnitName
http://www.usertrust.com
organizationName
The USERTRUST Network
stateOrProvinceName
UT
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1999-06-24 18:57:21 UTC
Valid to
2019-06-24 19:06:30 UTC
CRL
http://crl.usertrust.com/UTN-DATACorpSGC.crl
58:11:9F:0E:12:82:87:EA:50:FD:D9:87:45:6F:4F:78:DC:FA:D6:D4

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
IDEA-CBC-MD5 (0x50080) 128 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
IDEA-CBC-SHA (0x7) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Certificates

Subject
commonName
wisctest.wisc.edu
countryName
US
localityName
Madison
organizationalUnitName
OCIS
organizationName
University of Wisconsin-Madison
postalCode
53706
stateOrProvinceName
WI
streetAddress
1210 West Dayton Street
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2015-03-06 00:00:00 UTC
Valid to
2018-03-05 23:59:59 UTC
CRL
http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
OCSP
http://ocsp.usertrust.com
CB:7A:D0:CA:E2:F9:0C:E9:85:94:82:17:80:DD:65:0C:8F:1B:2B:CF
Subject Alternative Names
DNSName
wisctest.wisc.edu
DNSName
conference.openchat.wisctest.wisc.edu
DNSName
conference.wisctest.wisc.edu
DNSName
xmpp.wisctest.wisc.edu
Subject
commonName
InCommon RSA Server CA
countryName
US
localityName
Ann Arbor
organizationalUnitName
InCommon
organizationName
Internet2
stateOrProvinceName
MI
Details
Signature algorithm
sha384WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-10-06 00:00:00 UTC
Valid to
2024-10-05 23:59:59 UTC
CRL
http://crl.usertrust.com/USERTrustRSACertificationAuthority.crl
OCSP
http://ocsp.usertrust.com
F5:FB:01:DE:A6:E5:9C:A6:DD:05:70:54:F4:A3:FF:72:DD:E1:D5:C6
Subject
commonName
USERTrust RSA Certification Authority
countryName
US
localityName
Jersey City
organizationName
The USERTRUST Network
stateOrProvinceName
New Jersey
Details
Signature algorithm
sha384WithRSAEncryption
Public key
4096 bit RSA
Valid from
2000-05-30 10:48:38 UTC
Valid to
2020-05-30 10:48:38 UTC
CRL
http://crl.usertrust.com/AddTrustExternalCARoot.crl
OCSP
http://ocsp.usertrust.com
EA:B0:40:68:9A:0D:80:5B:5D:6F:D6:54:FC:16:8C:FF:00:B7:8B:E3
Subject
commonName
AddTrust External CA Root
countryName
SE
organizationalUnitName
AddTrust External TTP Network
organizationName
AddTrust AB
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1999-06-24 18:57:21 UTC
Valid to
2019-06-24 19:06:30 UTC
CRL
http://crl.usertrust.com/UTN-DATACorpSGC.crl
OCSP
http://ocsp.usertrust.com
53:84:5E:9F:D0:70:B7:AA:36:97:6F:53:6F:F1:44:1C:57:8C:63:D2
Subject
commonName
UTN - DATACorp SGC
countryName
US
localityName
Salt Lake City
organizationalUnitName
http://www.usertrust.com
organizationName
The USERTRUST Network
stateOrProvinceName
UT
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1999-06-24 18:57:21 UTC
Valid to
2019-06-24 19:06:30 UTC
CRL
http://crl.usertrust.com/UTN-DATACorpSGC.crl
58:11:9F:0E:12:82:87:EA:50:FD:D9:87:45:6F:4F:78:DC:FA:D6:D4

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
IDEA-CBC-MD5 (0x50080) 128 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
IDEA-CBC-SHA (0x7) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Certificates

Subject
commonName
wisctest.wisc.edu
countryName
US
localityName
Madison
organizationalUnitName
OCIS
organizationName
University of Wisconsin-Madison
postalCode
53706
stateOrProvinceName
WI
streetAddress
1210 West Dayton Street
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2015-03-06 00:00:00 UTC
Valid to
2018-03-05 23:59:59 UTC
CRL
http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
OCSP
http://ocsp.usertrust.com
CB:7A:D0:CA:E2:F9:0C:E9:85:94:82:17:80:DD:65:0C:8F:1B:2B:CF
Subject Alternative Names
DNSName
wisctest.wisc.edu
DNSName
conference.openchat.wisctest.wisc.edu
DNSName
conference.wisctest.wisc.edu
DNSName
xmpp.wisctest.wisc.edu

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
IDEA-CBC-MD5 (0x50080) 128 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
IDEA-CBC-SHA (0x7) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Show all 3 SRV targets

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=wisctest.wisc.edu&amp;type=client'><img src='https://xmpp.net/badge.php?domain=wisctest.wisc.edu' alt='xmpp.net score' /></a>