IM Observatory server report for dorchain.net

Test started 2018-04-26 06:22:47 UTC .

Show client to server result | Permalink to this report | Retest

redstar.dorchain.net:5269
Grade T: Certificate is not trusted, but ignoring trust would score an A.
redstar.dorchain.net:5269
Version
ejabberd 18.03
StartTLS
ALLOWED

SRV records _xmpp-server._tcp.dorchain.net DNSSEC

Priority Weight Port Server
10 0 5269 redstar.dorchain.net

TLSA records

Certificates

Subject
commonName
dorchain.net
Details
Signature algorithm
sha256WithRSAEncryption
Public key
3049 bit RSA
Valid from
2017-05-17 12:49:04 UTC
Valid to
2019-05-17 12:49:04 UTC
CRL
http://crl.cacert.org/class3-revoke.crl
OCSP
http://ocsp.cacert.org/
Valid for dorchain.net
YES
B8:BE:C5:6C:E0:C8:E8:5B:26:A9:A1:EE:42:5E:A4:7E:67:DB:E7:A7
Subject Alternative Names
DNSName
dorchain.net Matches
DNSName
redstar.dorchain.net
DNSName
mail.dorchain.net
DNSName
jabber.dorchain.net
DNSName
www.dorchain.net
DNSName
smtp.dorchain.net
XMPPAddr
dorchain.net Matches
XMPPAddr
redstar.dorchain.net
XMPPAddr
mail.dorchain.net
XMPPAddr
jabber.dorchain.net
XMPPAddr
www.dorchain.net
XMPPAddr
smtp.dorchain.net
Subject
commonName
CAcert Class 3 Root
organizationName
CAcert Inc.
organizationalUnitName
http://www.CAcert.org
Details
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2011-05-23 17:48:02 UTC
Valid to
2021-05-20 17:48:02 UTC
OCSP
http://ocsp.CAcert.org/
AD:7C:3F:64:FC:44:39:FE:F4:E9:0B:E8:F4:7C:6C:FA:8A:AD:FD:CE
Subject
commonName
CA Cert Signing Authority
emailAddress
support@cacert.org
organizationName
Root CA
organizationalUnitName
http://www.cacert.org
Details
Error: self signed certificate in certificate chain.
Signature algorithm
md5WithRSAEncryption INSECURE
Public key
4096 bit RSA
Valid from
2003-03-30 12:29:49 UTC
Valid to
2033-03-29 12:29:49 UTC
CRL
https://www.cacert.org/revoke.crl
13:5C:EC:36:F4:9C:B8:E9:3B:1A:B2:70:CD:80:88:46:76:CE:8F:33

Protocols

SSLv2 No
SSLv3 No
TLSv1 No
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does not respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: prime256v1
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
DHE-RSA-CAMELLIA256-SHA (0x88) 256 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
CAMELLIA256-SHA (0x84) 256 No -
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: prime256v1
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
DHE-RSA-CAMELLIA128-SHA (0x45) 128 Yes Diffie-Hellman:
Group: RFC 5114 2048-bit MODP Group with 256-bit Prime Order Subgroup
Bitsize: 2048
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -
CAMELLIA128-SHA (0x41) 128 No -

Badge

IM observatory score

Want to show this result on your webpage? Add this:

<a href='https://check.messaging.one/result.php?domain=dorchain.net&amp;type=server'>
  <img src='https://check.messaging.one/badge.php?domain=dorchain.net' alt='IM observatory score' />
</a>