IM Observatory client report for jabber.berkman.harvard.edu

Test started 2018-06-21 07:58:09 UTC .

Show server to server result | Permalink to this report | Retest

jabber.berkman.harvard.edu:5222
Certificate is not trusted, grade capped to F. Ignoring trust: F.
Server allows SSLv2, which is obsolete and insecure. Grade capped to F.
Server does not support TLS 1.2. Grade capped to C.
Warning: Server offers no forward-secret ciphers. Grade capped to A-.
Server supports SSL 3. Grade capped to B.
jabber.berkman.harvard.edu:5222
StartTLS
REQUIRED

SASL

Pre-TLS

None

Post-TLS
PLAIN

SRV records _xmpp-client._tcp.jabber.berkman.harvard.edu NO DNSSEC

Priority Weight Port Server

TLSA records

Certificates

Subject
commonName
oz.law.harvard.edu
countryName
US
localityName
Cambridge
organizationName
Harvard College
organizationalUnitName
Berkman Group
postalCode
02138
stateOrProvinceName
MA
streetAddress
23 Everett St
streetAddress
2nd Floor
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2016-08-08 00:00:00 UTC
Valid to
2019-08-08 23:59:59 UTC
CRL
http://crl.incommon-rsa.org/InCommonRSAServerCA.crl
OCSP
http://ocsp.usertrust.com
Valid for jabber.berkman.harvard.edu
YES
E6:94:4B:A0:A9:D1:27:87:EC:B4:B4:41:F7:3F:FF:65:BE:74:D4:33
Subject Alternative Names
DNSName
oz.law.harvard.edu
DNSName
imap.cyber.harvard.edu
DNSName
imap.metalab.harvard.edu
DNSName
jabber.berkman.harvard.edu Matches
DNSName
jabber.cyber.harvard.edu
DNSName
pop.cyber.harvard.edu
DNSName
smtp.cyber.harvard.edu
DNSName
smtp.metalab.harvard.edu
Subject
commonName
InCommon RSA Server CA
countryName
US
localityName
Ann Arbor
organizationName
Internet2
organizationalUnitName
InCommon
stateOrProvinceName
MI
Details
Signature algorithm
sha384WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-10-06 00:00:00 UTC
Valid to
2024-10-05 23:59:59 UTC
CRL
http://crl.usertrust.com/USERTrustRSACertificationAuthority.crl
OCSP
http://ocsp.usertrust.com
F5:FB:01:DE:A6:E5:9C:A6:DD:05:70:54:F4:A3:FF:72:DD:E1:D5:C6
Subject
commonName
USERTrust RSA Certification Authority
countryName
US
localityName
Jersey City
organizationName
The USERTRUST Network
stateOrProvinceName
New Jersey
Details
Signature algorithm
sha384WithRSAEncryption
Public key
4096 bit RSA
Valid from
2000-05-30 10:48:38 UTC
Valid to
2020-05-30 10:48:38 UTC
CRL
http://crl.usertrust.com/AddTrustExternalCARoot.crl
OCSP
http://ocsp.usertrust.com
EA:B0:40:68:9A:0D:80:5B:5D:6F:D6:54:FC:16:8C:FF:00:B7:8B:E3
Subject
commonName
AddTrust External CA Root
countryName
SE
organizationName
AddTrust AB
organizationalUnitName
AddTrust External TTP Network
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
2000-05-30 10:48:38 UTC
Valid to
2020-05-30 10:48:38 UTC
02:FA:F3:E2:91:43:54:68:60:78:57:69:4D:F5:E4:5B:68:85:18:68

Protocols

SSLv2 Yes
SSLv3 Yes
TLSv1 Yes
TLSv1.1 No
TLSv1.2 No

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
AES256-SHA (0x35) 256 No -
RC2-CBC-MD5 (0x30080) 128 No -
AES128-SHA (0x2f) 128 No -
RC4-SHA (0x5) 128 No -
RC4-MD5 (0x4) 128 No -
DES-CBC3-MD5 (0x700c0) WEAK 112 No -
DES-CBC3-SHA (0xa) WEAK 112 No -

Badge

IM observatory score

Want to show this result on your webpage? Add this:

<a href='https://check.messaging.one/result.php?domain=jabber.berkman.harvard.edu&amp;type=client'>
  <img src='https://check.messaging.one/badge.php?domain=jabber.berkman.harvard.edu' alt='IM observatory score' />
</a>