IM Observatory client report for xmpp.kafuka.org

Test started 2019-01-06 14:40:43 UTC .

Show server to server result | Permalink to this report |

xmpp.kafuka.org:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
xmpp.kafuka.org:5222
StartTLS
ALLOWED

SASL

Pre-TLS
DIGEST-MD5
PLAIN
Post-TLS
DIGEST-MD5
PLAIN

SRV records _xmpp-client._tcp.xmpp.kafuka.org BOGUS DNSSEC

Priority Weight Port Server

TLSA records

Certificates

Subject
commonName
*.kafuka.org
countryName
DE
organizationalUnitName
Rootbeer Department
organizationName
Series of Tubes, Inc.
stateOrProvinceName
Sakhalin
Details
Error: self signed certificate.
Signature algorithm
sha1WithRSAEncryption
Public key
4096 bit RSA
Valid from
2018-12-29 23:16:36 UTC
Valid to
2028-12-26 23:16:36 UTC
Valid for xmpp.kafuka.org
YES
FF:C3:35:9F:73:4B:01:DB:EA:09:18:08:63:B5:3B:1B:C5:B3:8C:27

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
RC2-CBC-MD5 (0x30080) 128 No -
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -
DES-CBC-MD5 (0x60040) VERY WEAK 56 No -
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-RC2-CBC-MD5 (0x6) VERY WEAK 40 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=xmpp.kafuka.org&amp;type=client'><img src='https://xmpp.net/badge.php?domain=xmpp.kafuka.org' alt='xmpp.net score' /></a>