aeris
/
cryptcheck
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
3 Branches
1 Tag
1.5 MiB
 
 
 
 
 
 
Tag: Branch: Tree: a0a2dc8813
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a0a2dc8813'
${ noResults }
cryptcheck/spec/html/perfect.html

1806 lines
50 KiB
Raw Blame History

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<title>Qualys SSL Labs - Projects / SSL Server Test / imirhil&#46;fr</title>
<script type="text/javascript" src="/includes/jquery-1.11.0.min.js"></script>
<link href="/includes/ssllabs.css" rel="styleSheet" type="text/css">
<link href="/includes/report.css" rel="styleSheet" type="text/css">
<meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
<style>
.infoBox {
border: 1px solid #bbbbbb;
padding: 5px;
background: #fffacd;
margin-top: 10px;
font-weight: bold;
color: #222222;
}
.highlightBox {
border: 1px solid #888888;
padding: 5px;
background: #7ed84d;
margin-top: 10px;
font-weight: bold;
color: #222222;
}
.noticeBox {
border: 1px solid #bbbbbb;
padding: 5px;
background: #CCEEFF;
margin-top: 10px;
font-weight: bold;
color: #222222;
}
.warningBox {
border: 1px solid #bbbbbb;
padding: 5px;
background: #FFCF79;
margin-top: 10px;
font-weight: bold;
color: #222222;
}
.errorBox {
border: 1px solid #bbbbbb;
padding: 5px;
background: #FFCCCB;
margin-top: 10px;
font-weight: bold;
color: #222222;
}
</style>
</head>
<body>
<div id="page">
<div id="header">
<div id="logo">
<a href="/index.html"><img src="/images/qualys-ssl-labs-logo.png" width="348" height="55" alt="SSL Labs logo" title="SSL Labs logo"></a>
</div>
<div id="navigation">
<a class="link" href="/index.html">Home</a>
<a class="link" href="/projects/index.html">Projects</a>
<a class="link" href="http://www.qualys.com">Qualys.com</a>
<a class="link" href="/about/contact.html">Contact</a>
</div>
<br clear="all" />
</div>
<div id="breadcrumbs">
<div class=real style="float: left">
<b>You are here:&nbsp;</b>
<a href="/index.html">Home</a> &gt; <a href="/projects/index.html">Projects</a>
&gt; <a href="/ssltest/index.html">SSL Server Test</a> &gt;
imirhil&#46;fr </div>
</div>
<div id="main">
<div class="reportTitle">SSL Report: <span class="url">
imirhil&#46;fr
</span> <span class=ip> (5&#46;135&#46;187&#46;37)</span> </div>
<div class="reportTime" style="float: left">
<b>Assessed on:</b>&nbsp; Wed&#32;Sep&#32;17&#32;23&#58;20&#58;49&#32;UTC&#32;2014
| <a href="clearCache.html?d=imirhil.fr">Clear cache</a>
</div>
<div style="float:right; font-weight: bold; font-size: 20px"><a href="/ssltest/index.html">Scan Another&nbsp;&raquo;</a></div>
<br clear="all"/>
<div id="appleTestDiv" style="display: none">
<div class="errorBox"><center>
Due to a recently discovered bug in Apple's code, your browser is exposed to MITM attacks. <a href="/ssltest/viewMyClient.html">Click here</a> for more information.
</center></div><br>
</div>
<div align="center">
<div class="reportSection">
<div class="sectionTitle">Summary</div>
<div class="sectionBody">
<div id="rating">
<div class="ratingTitle">Overall Rating</div>
<div class="rating_g" style="margin-bottom: 8px">
<span style="font-size: 0.75em">A+</span>
</div>
</div>
<div id="chart">
<div class="chartScale">
<div class="chartScaleDiv"></div>
<div class="chartScaleDiv"></div>
<div class="chartScaleDiv"></div>
<div class="chartScaleDiv"></div>
<div class="chartScaleDiv"></div>
<div class="chartScaleDiv" style="margin:0px"></div>
<div class="chartScaleLabelRow">
<div class="chartScaleLabel">0</div>
<div class="chartScaleLabel">20</div>
<div class="chartScaleLabel">40</div>
<div class="chartScaleLabel">60</div>
<div class="chartScaleLabel">80</div>
<div class="chartScaleLabel">100</div>
</div>
</div>
<div class="chartBody">
<div class="chartRow">
<div class="chartLabel">Certificate</div>
<div class="chartBar_g" style="width:300px">&nbsp;</div>
<div class="chartValue g">100</div>
</div>
<div class="chartRow">
<div class="chartLabel">Protocol Support</div>
<div class="chartBar_g" style="width:285px">&nbsp;</div>
<div class="chartValue g">95</div>
</div>
<div class="chartRow">
<div class="chartLabel">Key Exchange</div>
<div class="chartBar_g" style="width:240px">&nbsp;</div>
<div class="chartValue g">80</div>
</div>
<div class="chartRow">
<div class="chartLabel">Cipher Strength</div>
<div class="chartBar_g" style="width:270px">&nbsp;</div>
<div class="chartValue g">90</div>
</div>
</div>
</div>
<br clear="all">
<div class="infoBox">
Visit our <a href="/projects/documentation/index.html">documentation page</a>
for more information, configuration guides, and books. Known issues are documented
<a href="https://community.qualys.com/docs/DOC-4865">here</a>.
</div>
<div class="warningBox">
Intermediate certificate uses SHA1. When renewing, ensure you upgrade to an all-SHA256 chain.
&nbsp;<a href="https://community.qualys.com/blogs/securitylabs/2014/09/09/sha1-deprecation-what-you-need-to-know"><span class="moreInfo">MORE&nbsp;INFO&nbsp;&raquo;</span></a>
</div>
<div class="highlightBox">
This server supports HTTP Strict Transport Security with long duration.
Grade set to A+. &nbsp;<a href="https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security"><span class="moreInfo">MORE&nbsp;INFO&nbsp;&raquo;</span></a>
</div>
</div>
</div>
<div class="reportSection">
<div class="sectionTitle">Authentication</div>
<div class="sectionBody">
<!-- CERTIFICATE -->
<img class="tIcon" src="/images/icon-certificate.gif" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="2">Server Key and Certificate #1</td>
</tr>
</thead>
<tbody>
<tr class="tableRow">
<td class="tableLabel">Common names</td>
<td class="tableCell">www&#46;imirhil&#46;fr</td>
</tr>
<tr class="tableRow">
<td class="tableLabelTop">Alternative names</td>
<td class="tableCell"> www&#46;imirhil&#46;fr&#32;imirhil&#46;fr </td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Prefix handling</td>
<td class="tableCell">Both (with and without WWW)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Valid from</td>
<td class="tableCell">Sat&#32;Apr&#32;26&#32;18&#58;46&#58;02&#32;UTC&#32;2014</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Valid until</td>
<td class="tableCell">Mon&#32;Apr&#32;27&#32;08&#58;00&#58;17&#32;UTC&#32;2015 (expires in 7 months and 11 days)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Key</td>
<td class="tableCell">RSA 2048 bits</td>
</tr>
<tr class="tableRow">
<td class="tableLabel"> Weak key (Debian) </td>
<td class="tableCell"> No </td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Issuer</td>
<td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Signature algorithm</td>
<td class="tableCell">SHA256withRSA</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Extended Validation</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Revocation information</td>
<td class="tableCell">
CRL, OCSP </td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Revocation status</td>
<td class="tableCell">Good (not revoked)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel"><font color=green>Trusted</font></td>
<td class="tableCell"><font color=green><b>Yes</b></font></td>
</tr>
</tbody>
</table>
<br><br>
<img class="tIcon" src="/images/icon-certificates.png" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="2">Additional Certificates (if supplied)</td>
</tr>
</thead>
<tbody>
<tr class="tableRow">
<td class="tableLabel">Certificates provided</td>
<td class="tableCell">2 (3187 bytes)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Chain issues</td>
<td class="tableCell">None</font></td>
</tr>
<tr class="tableSeparator"><td class="tableSubHead" colspan="2">#2</td></tr>
<tr class="tableRow">
<td class="tableLabel">Subject</td>
<td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA <br>
<span style="color: grey">SHA1: f691fc87efb3135354225a10e127e911d1c7f8cf</span></td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Valid until</td>
<td class="tableCell">Tue&#32;Oct&#32;24&#32;20&#58;54&#58;17&#32;UTC&#32;2017 (expires in 3 years and 1 month)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Key</td>
<td class="tableCell">RSA 2048 bits</td>
</tr>
<tr>
<td class="tableLabel">Issuer</td>
<td class="tableCell">StartCom&#32;Certification&#32;Authority</td>
</tr>
<tr class="tableRow">
<td class="tableLabel"><font color=#F88017>Signature algorithm</font></td>
<td class="tableCell"><font color=#F88017>SHA1withRSA
&nbsp; <b>WEAK</b></font></td>
</tbody>
</table>
<br><br>
<img class="tIcon" src="/images/icon-chain.gif" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="3">Certification Paths</td>
</tr>
</thead>
<tbody>
<tr class="tableSeparator"><td class="tableSubHead" colspan="3">Path #1: Trusted </td></tr>
<tr class="tableRow">
<td class="tableCell" style="width: 75; text-align: right"><b>1</b></td>
<td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
Sent by server
</td>
<td class="tableCell">www&#46;imirhil&#46;fr
<br>
<span style="color: grey">SHA1: caa04d0b1d484aadb722262f877bc879e7720bb5</span>
<br>
RSA 2048 bits
/
SHA256withRSA
</td>
</tr>
<tr class="tableRow">
<td class="tableCell" style="width: 75; text-align: right"><b>2</b></td>
<td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
Sent by server
</td>
<td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA
<br>
<span style="color: grey">SHA1: f691fc87efb3135354225a10e127e911d1c7f8cf</span>
<br>
RSA 2048 bits
/
<font color=#F88017>SHA1withRSA</font>
<br><font color=#F88017><b>WEAK SIGNATURE</b></font> </td>
</tr>
<tr class="tableRow">
<td class="tableCell" style="width: 75; text-align: right"><b>3</b></td>
<td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
<font color=green>In trust store</font>
</td>
<td class="tableCell">StartCom&#32;Certification&#32;Authority
<br>
<span style="color: grey">SHA1: a3f1333fe242bfcfc5d14e8f394298406810d1a0</span>
<br>
RSA 4096 bits
/
SHA256withRSA
</td>
</tr>
<tr class="tableSeparator"><td class="tableSubHead" colspan="3">Path #2: Trusted </td></tr>
<tr class="tableRow">
<td class="tableCell" style="width: 75; text-align: right"><b>1</b></td>
<td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
Sent by server
</td>
<td class="tableCell">www&#46;imirhil&#46;fr
<br>
<span style="color: grey">SHA1: caa04d0b1d484aadb722262f877bc879e7720bb5</span>
<br>
RSA 2048 bits
/
SHA256withRSA
</td>
</tr>
<tr class="tableRow">
<td class="tableCell" style="width: 75; text-align: right"><b>2</b></td>
<td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
Sent by server
</td>
<td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA
<br>
<span style="color: grey">SHA1: f691fc87efb3135354225a10e127e911d1c7f8cf</span>
<br>
RSA 2048 bits
/
<font color=#F88017>SHA1withRSA</font>
<br><font color=#F88017><b>WEAK SIGNATURE</b></font> </td>
</tr>
<tr class="tableRow">
<td class="tableCell" style="width: 75; text-align: right"><b>3</b></td>
<td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
<font color=green>In trust store</font>
</td>
<td class="tableCell">StartCom&#32;Certification&#32;Authority
<br>
<span style="color: grey">SHA1: 3e2bf7f2031b96f38ce6c4d8a85d3e2d58476a0f</span>
<br>
RSA 4096 bits
/
SHA1withRSA
<br><font color="gray">Weak or insecure signature, but no impact on root certificates</b></font> </td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="reportSection">
<div class="sectionTitle">Configuration</div>
<div class="sectionBody">
<!-- PROTOCOLS -->
<img class="tIcon" src="/images/icon-protocol.gif" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="2">Protocols</td>
</tr>
</thead>
<tbody>
<tr class="tableRow">
<td class="tableLeft"><font color=green>TLS 1.2</font></td>
<td class="tableRight"><font color=green>Yes</font></td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS 1.1</td>
<td class="tableRight"> Yes </td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS 1.0</td>
<td class="tableRight"> Yes </td>
</tr>
<tr class="tableRow">
<td class="tableLeft">SSL 3</td>
<td class="tableRight">No</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">SSL 2</td>
<td class="tableRight">No</td>
</tr>
</tbody>
</table>
<br><br>
<img class="tIcon" src="/images/icon-cipher.gif" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="3">Cipher Suites (SSL 3+ suites in server-preferred order; deprecated and SSL 2 suites always at the end)</td>
</tr>
</thead>
<tbody>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
&nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
&nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0x9f</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA256 (<code>0x6b</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x39</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;CAMELLIA&#95;256&#95;CBC&#95;SHA (<code>0x88</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0x9d</code>)
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA256 (<code>0x3d</code>)
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x35</code>)
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;CAMELLIA&#95;256&#95;CBC&#95;SHA (<code>0x84</code>)
</td>
<td class="tableRight">256</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0xc02f</code>)
&nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA256 (<code>0xc027</code>)
&nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0xc013</code>)
&nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0x9e</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA256 (<code>0x67</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x33</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;CAMELLIA&#95;128&#95;CBC&#95;SHA (<code>0x45</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0x9c</code>)
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA256 (<code>0x3c</code>)
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x2f</code>)
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;CAMELLIA&#95;128&#95;CBC&#95;SHA (<code>0x41</code>)
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;SEED&#95;CBC&#95;SHA (<code>0x9a</code>)
&nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
</td>
<td class="tableRight">128</td>
</tr>
<tr class="tableRow">
<td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;SEED&#95;CBC&#95;SHA (<code>0x96</code>)
</td>
<td class="tableRight">128</td>
</tr>
</tbody>
</table>
<br><br>
<img class="tIcon" src="/images/icon-cipher.gif" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="4">Handshake Simulation</td>
</tr>
</thead>
<tbody>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Android&amp;version=2.3.7">Android 2&#46;3&#46;7</a>
&nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x33</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
128
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Android&amp;version=4.0.4">Android 4&#46;0&#46;4</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Android&amp;version=4.1.1">Android 4&#46;1&#46;1</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Android&amp;version=4.2.2">Android 4&#46;2&#46;2</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Android&amp;version=4.3">Android 4&#46;3</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Android&amp;version=4.4.2">Android 4&#46;4&#46;2</a>
</td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=BingBot&amp;version=Dec%202013">BingBot Dec&#32;2013</a>
&nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=BingPreview&amp;version=Jun%202014">BingPreview Jun&#32;2014</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x39</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Chrome&amp;version=37&amp;platform=OS%20X">Chrome 37 / OS&#32;X</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Firefox&amp;version=24.2.0%20ESR&amp;platform=Win%207">Firefox 24&#46;2&#46;0&#32;ESR / Win&#32;7</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Firefox&amp;version=32&amp;platform=OS%20X">Firefox 32 / OS&#32;X</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Googlebot&amp;version=Jun%202014">Googlebot Jun&#32;2014</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE&amp;version=6&amp;platform=XP">IE 6 / XP</a>
&nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser effectively does not support Forward Secrecy.">No FS <sup>1</sup></span> &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
<td class="tableLeft" colspan="2">
<font color="red">Protocol&#32;or&#32;cipher&#32;suite&#32;mismatch</font>
</td>
<td class="tableRight">
<font color="red">Fail<sup>3</sup></font>
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE&amp;version=7&amp;platform=Vista">IE 7 / Vista</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE&amp;version=8&amp;platform=XP">IE 8 / XP</a>
&nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser effectively does not support Forward Secrecy.">No FS <sup>1</sup></span> &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
<td class="tableLeft" colspan="2">
<font color="red">Protocol&#32;or&#32;cipher&#32;suite&#32;mismatch</font>
</td>
<td class="tableRight">
<font color="red">Fail<sup>3</sup></font>
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE&amp;version=8%2d10&amp;platform=Win%207">IE 8&#45;10 / Win&#32;7</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE&amp;version=11&amp;platform=Win%207">IE 11 / Win&#32;7</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE&amp;version=11&amp;platform=Win%208.1">IE 11 / Win&#32;8&#46;1</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE%20Mobile&amp;version=10&amp;platform=Win%20Phone%208.0">IE&#32;Mobile 10 / Win&#32;Phone&#32;8&#46;0</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=IE%20Mobile&amp;version=11&amp;platform=Win%20Phone%208.1">IE&#32;Mobile 11 / Win&#32;Phone&#32;8&#46;1</a>
</td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Java&amp;version=6u45">Java 6u45</a>
&nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x33</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
128
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Java&amp;version=7u25">Java 7u25</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0xc013</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
128
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Java&amp;version=8b132">Java 8b132</a>
</td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0xc02f</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
128
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=OpenSSL&amp;version=0.9.8y">OpenSSL 0&#46;9&#46;8y</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x39</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=OpenSSL&amp;version=1.0.1h">OpenSSL 1&#46;0&#46;1h</a>
</td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Safari&amp;version=5.1.9&amp;platform=OS%20X%2010.6.8">Safari 5&#46;1&#46;9 / OS&#32;X&#32;10&#46;6&#46;8</a>
</td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Safari&amp;version=6&amp;platform=iOS%206.0.1">Safari 6 / iOS&#32;6&#46;0&#46;1</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Safari&amp;version=7&amp;platform=iOS%207.1">Safari 7 / iOS&#32;7&#46;1</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Safari&amp;version=8&amp;platform=iOS%208.0%20Beta">Safari 8 / iOS&#32;8&#46;0&#32;Beta</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Safari&amp;version=6.0.4&amp;platform=OS%20X%2010.8.4">Safari 6&#46;0&#46;4 / OS&#32;X&#32;10&#46;8&#46;4</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
TLS&#32;1&#46;0
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Safari&amp;version=7&amp;platform=OS%20X%2010.9">Safari 7 / OS&#32;X&#32;10&#46;9</a>
&nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=Yahoo%20Slurp&amp;version=Jun%202014">Yahoo&#32;Slurp Jun&#32;2014</a>
&nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr>
<td class="tableLeft" width="180">
<a href="viewClient.html?name=YandexBot&amp;version=Sep%202014">YandexBot Sep&#32;2014</a>
</td>
<td class="tableLeft" width="60">
<font color="green">TLS&#32;1&#46;2</font>
</td>
<td class="tableLeft"><span style="font-size: 11px">
TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
&nbsp;<span class="dhParams">
<span class="highlight">FS</span>
</span></span>
</td>
<td class="tableRight">
256
</td>
</tr>
<tr><td colspan="4">
<font color=grey>(1) Clients that do not support Forward Secrecy (FS) are excluded when determining support for it.</font>
</td></tr>
<tr><td colspan="4">
<font color=grey>(2) No support for virtual SSL hosting (SNI). Connects to the default site if the server uses SNI.</font>
</td></tr>
<tr><td colspan="4">
<font color=grey>(3) Only first connection attempt simulated. Browsers tend to retry with a lower protocol version.</font>
</td></tr>
<tr><td colspan="4">
<font color=grey>(R) Denotes a reference browser or client, with which we expect better effective security.</font>
</td></tr>
<tr><td colspan="4">
<font color=grey>(All) We use defaults, but some platforms do not use their best protocols and features (e.g., Java 6 & 7, older IE).</font>
</td></tr>
</tbody>
</table>
<br><br>
<img class="tIcon" src="/images/icon-protocol-details.gif" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="2">Protocol Details</td>
</tr>
</thead>
<tbody>
<tr class="tableRow">
<td class="tableLabel"><font color=green>Secure Renegotiation</font></td>
<td class="tableCell"><font color=green><b>Supported</b></font></td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Secure Client-Initiated Renegotiation</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Insecure Client-Initiated Renegotiation</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">BEAST attack</td>
<td class="tableCell">
Not mitigated server-side (<a href="https://community.qualys.com/blogs/securitylabs/2013/09/10/is-beast-still-a-threat">more info</a>)
&nbsp;<span class=dhParams>&nbsp;TLS 1.0: <code>0xc014</code></span>
</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">TLS compression</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">RC4</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Heartbeat (extension)</td>
<td class="tableCell">Yes</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Heartbleed (vulnerability)</td>
<td class="tableCell">No (<a href="https://community.qualys.com/blogs/securitylabs/2014/04/08/ssl-labs-test-for-the-heartbleed-attack">more info</a>)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">OpenSSL CCS vuln. (CVE-2014-0224)</td>
<td class="tableCell">No (<a href="https://community.qualys.com/blogs/securitylabs/2014/06/13/ssl-pulse-49-vulnerable-to-cve-2014-0224-14-exploitable">more info</a>)</td>
</tr>
<tr class="tableRow">
<td class="tableLabel"><font color="green">Forward Secrecy</font></td>
<td class="tableCell"><font color="green"><b>Yes (with most browsers)</b> &nbsp; <b>ROBUST</b> (<a style="color: green" href="https://community.qualys.com/blogs/securitylabs/2013/06/25/ssl-labs-deploying-forward-secrecy">more info</a>)</font></td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Next Protocol Negotiation</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Session resumption (caching)</td>
<td class="tableCell">Yes</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Session resumption (tickets)</td>
<td class="tableCell">Yes</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">OCSP stapling</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel"><font color=green>Strict Transport Security (HSTS)</font></td>
<td class="tableCell"><b><font color=green>Yes</font></b> &nbsp; <span class="dhParams">max&#45;age&#61;31536000</span>
</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Long handshake intolerance</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">TLS extension intolerance</td>
<td class="tableCell">No</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">TLS version intolerance</td>
<td class="tableCell">
<b><font color="#F88017">
</font>
<font color="#666666">
TLS 2.98&nbsp; </font></b>
</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">SSL 2 handshake compatibility</td>
<td class="tableCell"> Yes </td>
</tr>
</tbody>
</table>
<br><br>
<img class="tIcon" src="/images/icon-misc.png" width="65" height="50" alt="">
<table class="reportTable">
<thead>
<tr>
<td class="tableHead" colspan="2">Miscellaneous</td>
</tr>
</thead>
<tbody>
<tr class="tableRow">
<td class="tableLabel">Test date</td>
<td class="tableCell">Wed&#32;Sep&#32;17&#32;23&#58;18&#58;52&#32;UTC&#32;2014</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Test duration</td>
<td class="tableCell">117.399 seconds</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">HTTP status code</td>
<td class="tableCell">
302
</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">HTTP forwarding</td>
<td class="tableCell">https&#58;&#47;&#47;blog&#46;imirhil&#46;fr</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">HTTP server signature</td>
<td class="tableCell">Apache</td>
</tr>
<tr class="tableRow">
<td class="tableLabel">Server hostname</td>
<td class="tableCell"> server&#46;imirhil&#46;fr </td>
</tr>
<tr class="tableRow">
<td class="tableLabel">PCI compliant</td>
<td class="tableCell"> Yes </td>
</tr>
<tr class="tableRow">
<td class="tableLabel">FIPS-ready</td>
<td class="tableCell"> No </td>
</tr>
</tbody>
</table>
<br><br>
</div>
</div>
</div>
<p class="grayText">SSL Report v1&#46;10&#46;31</p>
</div>
</div>
<div id="pageEnd">
<div id="copyright">
<table width=910 border=0 cellpadding=5 cellspacing=0><tr>
<td style="font-size: 12px">
Copyright &copy; 2009-2014 <a href="https://www.qualys.com">Qualys, Inc</A>. All Rights Reserved.
</td><td align=right style="font-size: 12px">
<a href="/about/terms.html">Terms and Conditions</a>
</td>
</tr></table>
</div>
</div>
<script type="text/javascript">
var _gaq = _gaq || [];
_gaq.push(['_setAccount', 'UA-9372751-1']);
_gaq.push(['_trackPageview']);
(function() {
var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
})();
</script>
</body>
</html>