IM Observatory client report for chat.ucr.edu

Test started 2018-03-06 23:46:31 UTC .

Show server to server result | Permalink to this report | Retest

chat.ucr.edu:5222
Certificate is not trusted, grade capped to F. Ignoring trust: C.
Server does not support TLS 1.2. Grade capped to C.
Server supports SSL 3. Grade capped to B.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
chat.ucr.edu:5222
StartTLS
ALLOWED

SASL

Pre-TLS
ANONYMOUS
PLAIN
Post-TLS
ANONYMOUS
PLAIN

SRV records _xmpp-client._tcp.chat.ucr.edu DNSSEC

Priority Weight Port Server
0 0 5222 chat.ucr.edu

TLSA records

Certificates

Subject
commonName
chat.ucr.edu
organizationalUnitName
Domain Control Validated
Details
Error: certificate has expired.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-08-21 14:46:02 UTC
Valid to
2017-09-11 14:06:59 UTC
CRL
http://crl.godaddy.com/gdig2s1-87.crl
OCSP
http://ocsp.godaddy.com/
Valid for chat.ucr.edu
YES
77:3E:0C:46:EA:BA:A2:11:CE:31:3F:D8:19:1E:EA:C4:74:A3:8E:EB
Subject Alternative Names
DNSName
chat.ucr.edu Matches
DNSName
www.chat.ucr.edu
Subject
commonName
Go Daddy Secure Certificate Authority - G2
countryName
US
localityName
Scottsdale
organizationalUnitName
http://certs.godaddy.com/repository/
organizationName
GoDaddy.com, Inc.
stateOrProvinceName
Arizona
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2011-05-03 07:00:00 UTC
Valid to
2031-05-03 07:00:00 UTC
CRL
http://crl.godaddy.com/gdroot-g2.crl
OCSP
http://ocsp.godaddy.com/
27:AC:93:69:FA:F2:52:07:BB:26:27:CE:FA:CC:BE:4E:F9:C3:19:B8
Subject
commonName
Go Daddy Root Certificate Authority - G2
countryName
US
localityName
Scottsdale
organizationName
GoDaddy.com, Inc.
stateOrProvinceName
Arizona
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2009-09-01 00:00:00 UTC
Valid to
2037-12-31 23:59:59 UTC
47:BE:AB:C9:22:EA:E8:0E:78:78:34:62:A7:9F:45:C2:54:FD:E6:8B

Protocols

SSLv2 No
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: sect571r1
ECDHE-RSA-RC4-SHA (0xc011) 128 Yes Curve: sect571r1
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DHE-DSS-AES128-SHA (0x32) 128 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
RC4-MD5 (0x10080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
ECDHE-RSA-DES-CBC3-SHA (0xc012) WEAK 112 Yes Curve: sect571r1
EDH-RSA-DES-CBC3-SHA (0x16) WEAK 112 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
EDH-DSS-DES-CBC3-SHA (0x13) WEAK 112 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DES-CBC3-SHA (0xa) WEAK 112 No -
EDH-RSA-DES-CBC-SHA (0x15) VERY WEAK 56 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
EDH-DSS-DES-CBC-SHA (0x12) VERY WEAK 56 Yes Diffie-Hellman:
Group: Java sun.security.provider default 768-bit prime
Bitsize: 768
DES-CBC-SHA (0x9) VERY WEAK 56 No -
EXP-EDH-RSA-DES-CBC-SHA (0x14) VERY WEAK 40 Yes Diffie-Hellman:
Group: Java sun.security.provider default 512-bit prime
Bitsize: 512
EXP-EDH-DSS-DES-CBC-SHA (0x11) VERY WEAK 40 Yes Diffie-Hellman:
Group: Java sun.security.provider default 512-bit prime
Bitsize: 512
EXP-RC4-MD5 (0x20080) VERY WEAK 40 No -
EXP-DES-CBC-SHA (0x8) VERY WEAK 40 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=chat.ucr.edu&amp;type=client'><img src='https://xmpp.net/badge.php?domain=chat.ucr.edu' alt='xmpp.net score' /></a>