IM Observatory client report for rhansen.org

Test started 2018-03-07 00:18:41 UTC .

Show server to server result | Permalink to this report | Retest

xmpp.rhansen.org:5222
Certificate is not trusted, grade capped to F. Ignoring trust: B.
Server uses Diffie-Hellman parameters of < 2048 bits. Grade capped to B.
xmpp.rhansen.org:5222
StartTLS
REQUIRED

SASL

Pre-TLS
DIGEST-MD5
PLAIN
SCRAM-SHA-1
Post-TLS
DIGEST-MD5
PLAIN
SCRAM-SHA-1

SRV records _xmpp-client._tcp.rhansen.org DNSSEC

Priority Weight Port Server
0 0 5222 xmpp.rhansen.org

TLSA records

Certificates

Subject
commonName
rhansen.org
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2015-05-23 03:28:54 UTC
Valid to
2018-05-23 04:24:22 UTC
CRL
http://crls6.wosign.com/ca6-server1-free.crl
OCSP
http://ocsp6.wosign.com/ca6/server1/free
Valid for rhansen.org
YES
07:03:E6:90:8F:E5:D1:73:73:3D:05:24:A9:BE:9D:53:3B:57:F6:88
Subject Alternative Names
DNSName
rhansen.org Matches
DNSName
www.rhansen.org
Subject
commonName
WoSign CA Free SSL Certificate G2
countryName
CN
organizationName
WoSign CA Limited
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-11-08 00:58:58 UTC
Valid to
2029-11-08 00:58:58 UTC
CRL
http://crls1.wosign.com/ca1.crl
OCSP
http://ocsp1.wosign.com/ca1
F4:DB:6D:02:81:F2:04:D3:6E:2D:2F:BF:A7:2F:79:40:ED:9D:1A:DC
Subject
commonName
Certification Authority of WoSign
countryName
CN
organizationName
WoSign CA Limited
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 22:46:36 UTC
Valid to
2019-12-31 23:59:59 UTC
CRL
http://crl.startssl.com/sfsca.crl
OCSP
http://ocsp.startssl.com/ca
B0:B6:8A:E9:7C:FE:2A:FA:CD:0D:C2:01:0B:9D:70:AC:E5:93:E8:A6
Subject
commonName
StartCom Certification Authority
countryName
IL
organizationalUnitName
Secure Digital Certificate Signing
organizationName
StartCom Ltd.
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 19:46:37 UTC
Valid to
2036-09-17 19:46:36 UTC
A3:F1:33:3F:E2:42:BF:CF:C5:D1:4E:8F:39:42:98:40:68:10:D1:A0
Subject
commonName
StartCom Certification Authority
countryName
IL
organizationalUnitName
Secure Digital Certificate Signing
organizationName
StartCom Ltd.
Details
Warning: Certificate is unused.
Error: self signed certificate in certificate chain.
Signature algorithm
sha1WithRSAEncryption
Public key
4096 bit RSA
Valid from
2006-09-17 19:46:36 UTC
Valid to
2036-09-17 19:46:36 UTC
CRL
http://crl.startcom.org/sfsca-crl.crl
3E:2B:F7:F2:03:1B:96:F3:8C:E6:C4:D8:A8:5D:3E:2D:58:47:6A:0F

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
AES256-GCM-SHA384 (0x9d) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-SEED-SHA (0x9a) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: RFC 5114 1024-bit MODP Group with 160-bit Prime Order Subgroup
Bitsize: 1024
AES128-GCM-SHA256 (0x9c) 128 No -
SEED-SHA (0x96) 128 No -
CAMELLIA128-SHA (0x41) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -

Badge

xmpp.net score

Want to show this result on your webpage? Add this:

<a href='https://xmpp.net/result.php?domain=rhansen.org&amp;type=client'><img src='https://xmpp.net/badge.php?domain=rhansen.org' alt='xmpp.net score' /></a>