IM Observatory server report for jabber.kernel-error.de

Test started 2018-04-11 23:04:21 UTC .

Show client to server result | Permalink to this report | Retest

jabber.kernel-error.de:5269
Grade T: Certificate is not trusted, but ignoring trust would score an A.
jabber.kernel-error.de:5269
Version
Openfire 4.2.2
StartTLS
REQUIRED

SRV records _xmpp-server._tcp.jabber.kernel-error.de DNSSEC

Priority Weight Port Server
0 5 5269 jabber.kernel-error.de

TLSA records

Verified Usage Selector Match Data
NO service certificate constraint full SHA-512
C8:16:70:67:75:59:8D:A1:27:52:E6:89:35:90:B2:E0:74:84:FE:5E:94:39:CE:A9:C2:E5:AA:DC:82:CE:21:C3:6D:9C:0A:54:6D:28:F0:8B:1E:44:C3:4E:52:C7:7E:68:D3:78:49:B9:5C:2E:F6:FB:5A:7B:05:E2:B2:7A:2A:BE

Certificates

Subject
commonName
*.kernel-error.de
organizationalUnitName
Domain Control Validated
Details
Error: unable to get local issuer certificate.
Error: unable to verify the first certificate.
Signature algorithm
sha256WithRSAEncryption
Public key
4096 bit RSA
Valid from
2018-02-26 16:54:40 UTC
Valid to
2019-03-11 10:52:52 UTC
CRL
http://crl2.alphassl.com/gs/gsalphasha2g2.crl
OCSP
http://ocsp2.globalsign.com/gsalphasha2g2
Valid for jabber.kernel-error.de
YES
98:29:49:3F:51:52:9B:E5:59:7A:3A:51:D5:46:FA:38:D4:FD:53:5D
Subject Alternative Names
DNSName
*.kernel-error.de
DNSName
kernel-error.de
Subject
commonName
AlphaSSL CA - SHA256 - G2
countryName
BE
organizationName
GlobalSign nv-sa
Details
Signature algorithm
sha256WithRSAEncryption
Public key
2048 bit RSA
Valid from
2014-02-20 10:00:00 UTC
Valid to
2024-02-20 10:00:00 UTC
CRL
http://crl.globalsign.net/root.crl
OCSP
http://ocsp.globalsign.com/rootr1
4C:27:43:17:17:56:5A:3A:07:F3:E6:D0:03:2C:42:58:94:9C:F9:EC
Subject
commonName
GlobalSign Root CA
countryName
BE
organizationName
GlobalSign nv-sa
organizationalUnitName
Root CA
Details
Signature algorithm
sha1WithRSAEncryption
Public key
2048 bit RSA
Valid from
1998-09-01 12:00:00 UTC
Valid to
2028-01-28 12:00:00 UTC
B1:BC:96:8B:D4:F4:9D:62:2A:A8:9A:81:F2:15:01:52:A4:1D:82:9C

Protocols

SSLv2 No
SSLv3 No
TLSv1 Yes
TLSv1.1 Yes
TLSv1.2 Yes

Ciphers

Server does respect the client's cipher ordering.

Cipher suiteBitsizeForward secrecyInfo
ECDHE-RSA-AES256-GCM-SHA384 (0xc030) 256 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA384 (0xc028) 256 Yes Curve: prime256v1
ECDHE-RSA-AES256-SHA (0xc014) 256 Yes Curve: prime256v1
DHE-RSA-AES256-GCM-SHA384 (0x9f) 256 Yes Diffie-Hellman:
Group: draft-ietf-tls-negotiated-ff-dhe-10 ffdhe2048
Bitsize: 2048
DHE-RSA-AES256-SHA256 (0x6b) 256 Yes Diffie-Hellman:
Group: draft-ietf-tls-negotiated-ff-dhe-10 ffdhe2048
Bitsize: 2048
DHE-RSA-AES256-SHA (0x39) 256 Yes Diffie-Hellman:
Group: draft-ietf-tls-negotiated-ff-dhe-10 ffdhe2048
Bitsize: 2048
AES256-GCM-SHA384 (0x9d) 256 No -
AES256-SHA256 (0x3d) 256 No -
AES256-SHA (0x35) 256 No -
ECDHE-RSA-AES128-GCM-SHA256 (0xc02f) 128 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA256 (0xc027) 128 Yes Curve: prime256v1
ECDHE-RSA-AES128-SHA (0xc013) 128 Yes Curve: prime256v1
DHE-RSA-AES128-GCM-SHA256 (0x9e) 128 Yes Diffie-Hellman:
Group: draft-ietf-tls-negotiated-ff-dhe-10 ffdhe2048
Bitsize: 2048
DHE-RSA-AES128-SHA256 (0x67) 128 Yes Diffie-Hellman:
Group: draft-ietf-tls-negotiated-ff-dhe-10 ffdhe2048
Bitsize: 2048
DHE-RSA-AES128-SHA (0x33) 128 Yes Diffie-Hellman:
Group: draft-ietf-tls-negotiated-ff-dhe-10 ffdhe2048
Bitsize: 2048
AES128-GCM-SHA256 (0x9c) 128 No -
AES128-SHA256 (0x3c) 128 No -
AES128-SHA (0x2f) 128 No -

Badge

IM observatory score

Want to show this result on your webpage? Add this:

<a href='https://check.messaging.one/result.php?domain=jabber.kernel-error.de&amp;type=server'>
  <img src='https://check.messaging.one/badge.php?domain=jabber.kernel-error.de' alt='IM observatory score' />
</a>