IM Observatory client report for fosfa.cz
Test started 2021-05-26 11:17:05 UTC .
Show server to server result | Permalink to this report |
Score
fosfa.cz:5222
Grade:
F
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
General
fosfa.cz:5222
- StartTLS
- REQUIRED
SASL
Pre-TLS
| DIGEST-MD5 |
| PLAIN |
| SCRAM-SHA-1 |
Post-TLS
| DIGEST-MD5 |
| PLAIN |
| SCRAM-SHA-1 |
DNS
SRV records _xmpp-client._tcp.fosfa.cz DNSSEC
| Priority | Weight | Port | Server |
|---|---|---|---|
| 5 | 0 | 5222 | fosfa.cz |
TLSA records
_5222._tcp.fosfa.cz DNSSEC
TLS
fosfa.cz:5222
Certificates
#0 fosfa.cz
Subject
- commonName
- fosfa.cz
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
- Signature algorithm
- sha512WithRSAEncryption
- Public key
- 2048 bit RSA
- Valid from
- 2020-05-05 01:04:42 UTC
- Valid to
- 2020-11-01 01:04:42 UTC
- CRL
- http://crl.cacert.org/revoke.crl
- OCSP
- http://ocsp.cacert.org/
- Valid for fosfa.cz
- YES
8E:8F:BE:8D:CB:18:63:16:E4:18:FC:83:00:DA:0E:8E:73:46:E4:B8
Subject Alternative Names
- DNSName
- fosfa.cz Matches
- XMPPAddr
- fosfa.cz Matches
CA Cert Signing Authority
Subject
- commonName
- CA Cert Signing Authority
- emailAddress
- support@cacert.org
- organizationalUnitName
- http://www.cacert.org
- organizationName
- Root CA
Details
- Signature algorithm
- sha256WithRSAEncryption
- Public key
- 4096 bit RSA
- Valid from
- 2003-03-30 12:29:49 UTC
- Valid to
- 2033-03-29 12:29:49 UTC
- CRL
- http://crl.cacert.org/revoke.crl
- OCSP
- http://ocsp.cacert.org
DD:FC:DA:54:1E:75:77:AD:DC:A8:7E:88:27:A9:8A:50:60:32:52:A5
Protocols
| SSLv2 | Yes |
| SSLv3 | Yes |
| TLSv1 | Yes |
| TLSv1.1 | No |
| TLSv1.2 | No |
Ciphers
Server does respect the client's cipher ordering.
| Cipher suite | Bitsize | Forward secrecy | Info |
|---|---|---|---|
| AES256-SHA (0x35) | 256 | No | - |
| IDEA-CBC-MD5 (0x50080) | 128 | No | - |
| RC2-CBC-MD5 (0x30080) | 128 | No | - |
| RC4-MD5 (0x10080) | 128 | No | - |
| AES128-SHA (0x2f) | 128 | No | - |
| IDEA-CBC-SHA (0x7) | 128 | No | - |
| RC4-SHA (0x5) | 128 | No | - |
| DES-CBC3-MD5 (0x700c0) WEAK | 112 | No | - |
| DES-CBC3-SHA (0xa) WEAK | 112 | No | - |
| DES-CBC-MD5 (0x60040) VERY WEAK | 56 | No | - |
| DES-CBC-SHA (0x9) VERY WEAK | 56 | No | - |
| EXP-RC4-MD5 (0x20080) VERY WEAK | 40 | No | - |
| EXP-RC2-CBC-MD5 (0x6) VERY WEAK | 40 | No | - |
Badge
Want to show this result on your webpage? Add this:
<a href='https://xmpp.net/result.php?domain=fosfa.cz&type=client'><img src='https://xmpp.net/badge.php?domain=fosfa.cz' alt='xmpp.net score' /></a>