You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

perfect.html 51KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482148314841485148614871488148914901491149214931494149514961497149814991500150115021503150415051506150715081509151015111512151315141515151615171518151915201521152215231524152515261527152815291530153115321533153415351536153715381539154015411542154315441545154615471548154915501551155215531554155515561557155815591560156115621563156415651566156715681569157015711572157315741575157615771578157915801581158215831584158515861587158815891590159115921593159415951596159715981599160016011602160316041605160616071608160916101611161216131614161516161617161816191620162116221623162416251626162716281629163016311632163316341635163616371638163916401641164216431644164516461647164816491650165116521653165416551656165716581659166016611662166316641665166616671668166916701671167216731674167516761677167816791680168116821683168416851686168716881689169016911692169316941695169616971698169917001701170217031704170517061707170817091710171117121713171417151716171717181719172017211722172317241725172617271728172917301731173217331734173517361737173817391740174117421743174417451746174717481749175017511752175317541755175617571758175917601761176217631764176517661767176817691770177117721773177417751776177717781779178017811782178317841785178617871788178917901791179217931794179517961797179817991800180118021803180418051806
  1. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
  2. <html>
  3. <head>
  4. <title>Qualys SSL Labs - Projects / SSL Server Test / imirhil&#46;fr</title>
  5. <script type="text/javascript" src="/includes/jquery-1.11.0.min.js"></script>
  6. <link href="/includes/ssllabs.css" rel="styleSheet" type="text/css">
  7. <link href="/includes/report.css" rel="styleSheet" type="text/css">
  8. <meta http-equiv="Content-Type" content="text/html;charset=utf-8" />
  9. <style>
  10. .infoBox {
  11. border: 1px solid #bbbbbb;
  12. padding: 5px;
  13. background: #fffacd;
  14. margin-top: 10px;
  15. font-weight: bold;
  16. color: #222222;
  17. }
  18. .highlightBox {
  19. border: 1px solid #888888;
  20. padding: 5px;
  21. background: #7ed84d;
  22. margin-top: 10px;
  23. font-weight: bold;
  24. color: #222222;
  25. }
  26. .noticeBox {
  27. border: 1px solid #bbbbbb;
  28. padding: 5px;
  29. background: #CCEEFF;
  30. margin-top: 10px;
  31. font-weight: bold;
  32. color: #222222;
  33. }
  34. .warningBox {
  35. border: 1px solid #bbbbbb;
  36. padding: 5px;
  37. background: #FFCF79;
  38. margin-top: 10px;
  39. font-weight: bold;
  40. color: #222222;
  41. }
  42. .errorBox {
  43. border: 1px solid #bbbbbb;
  44. padding: 5px;
  45. background: #FFCCCB;
  46. margin-top: 10px;
  47. font-weight: bold;
  48. color: #222222;
  49. }
  50. </style>
  51. </head>
  52. <body>
  53. <div id="page">
  54. <div id="header">
  55. <div id="logo">
  56. <a href="/index.html"><img src="/images/qualys-ssl-labs-logo.png" width="348" height="55" alt="SSL Labs logo" title="SSL Labs logo"></a>
  57. </div>
  58. <div id="navigation">
  59. <a class="link" href="/index.html">Home</a>
  60. <a class="link" href="/projects/index.html">Projects</a>
  61. <a class="link" href="http://www.qualys.com">Qualys.com</a>
  62. <a class="link" href="/about/contact.html">Contact</a>
  63. </div>
  64. <br clear="all" />
  65. </div>
  66. <div id="breadcrumbs">
  67. <div class=real style="float: left">
  68. <b>You are here:&nbsp;</b>
  69. <a href="/index.html">Home</a> &gt; <a href="/projects/index.html">Projects</a>
  70. &gt; <a href="/ssltest/index.html">SSL Server Test</a> &gt;
  71. imirhil&#46;fr </div>
  72. </div>
  73. <div id="main">
  74. <div class="reportTitle">SSL Report: <span class="url">
  75. imirhil&#46;fr
  76. </span> <span class=ip> (5&#46;135&#46;187&#46;37)</span> </div>
  77. <div class="reportTime" style="float: left">
  78. <b>Assessed on:</b>&nbsp; Wed&#32;Sep&#32;17&#32;23&#58;20&#58;49&#32;UTC&#32;2014
  79. | <a href="clearCache.html?d=imirhil.fr">Clear cache</a>
  80. </div>
  81. <div style="float:right; font-weight: bold; font-size: 20px"><a href="/ssltest/index.html">Scan Another&nbsp;&raquo;</a></div>
  82. <br clear="all"/>
  83. <div id="appleTestDiv" style="display: none">
  84. <div class="errorBox"><center>
  85. Due to a recently discovered bug in Apple's code, your browser is exposed to MITM attacks. <a href="/ssltest/viewMyClient.html">Click here</a> for more information.
  86. </center></div><br>
  87. </div>
  88. <div align="center">
  89. <div class="reportSection">
  90. <div class="sectionTitle">Summary</div>
  91. <div class="sectionBody">
  92. <div id="rating">
  93. <div class="ratingTitle">Overall Rating</div>
  94. <div class="rating_g" style="margin-bottom: 8px">
  95. <span style="font-size: 0.75em">A+</span>
  96. </div>
  97. </div>
  98. <div id="chart">
  99. <div class="chartScale">
  100. <div class="chartScaleDiv"></div>
  101. <div class="chartScaleDiv"></div>
  102. <div class="chartScaleDiv"></div>
  103. <div class="chartScaleDiv"></div>
  104. <div class="chartScaleDiv"></div>
  105. <div class="chartScaleDiv" style="margin:0px"></div>
  106. <div class="chartScaleLabelRow">
  107. <div class="chartScaleLabel">0</div>
  108. <div class="chartScaleLabel">20</div>
  109. <div class="chartScaleLabel">40</div>
  110. <div class="chartScaleLabel">60</div>
  111. <div class="chartScaleLabel">80</div>
  112. <div class="chartScaleLabel">100</div>
  113. </div>
  114. </div>
  115. <div class="chartBody">
  116. <div class="chartRow">
  117. <div class="chartLabel">Certificate</div>
  118. <div class="chartBar_g" style="width:300px">&nbsp;</div>
  119. <div class="chartValue g">100</div>
  120. </div>
  121. <div class="chartRow">
  122. <div class="chartLabel">Protocol Support</div>
  123. <div class="chartBar_g" style="width:285px">&nbsp;</div>
  124. <div class="chartValue g">95</div>
  125. </div>
  126. <div class="chartRow">
  127. <div class="chartLabel">Key Exchange</div>
  128. <div class="chartBar_g" style="width:240px">&nbsp;</div>
  129. <div class="chartValue g">80</div>
  130. </div>
  131. <div class="chartRow">
  132. <div class="chartLabel">Cipher Strength</div>
  133. <div class="chartBar_g" style="width:270px">&nbsp;</div>
  134. <div class="chartValue g">90</div>
  135. </div>
  136. </div>
  137. </div>
  138. <br clear="all">
  139. <div class="infoBox">
  140. Visit our <a href="/projects/documentation/index.html">documentation page</a>
  141. for more information, configuration guides, and books. Known issues are documented
  142. <a href="https://community.qualys.com/docs/DOC-4865">here</a>.
  143. </div>
  144. <div class="warningBox">
  145. Intermediate certificate uses SHA1. When renewing, ensure you upgrade to an all-SHA256 chain.
  146. &nbsp;<a href="https://community.qualys.com/blogs/securitylabs/2014/09/09/sha1-deprecation-what-you-need-to-know"><span class="moreInfo">MORE&nbsp;INFO&nbsp;&raquo;</span></a>
  147. </div>
  148. <div class="highlightBox">
  149. This server supports HTTP Strict Transport Security with long duration.
  150. Grade set to A+. &nbsp;<a href="https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security"><span class="moreInfo">MORE&nbsp;INFO&nbsp;&raquo;</span></a>
  151. </div>
  152. </div>
  153. </div>
  154. <div class="reportSection">
  155. <div class="sectionTitle">Authentication</div>
  156. <div class="sectionBody">
  157. <!-- CERTIFICATE -->
  158. <img class="tIcon" src="/images/icon-certificate.gif" width="65" height="50" alt="">
  159. <table class="reportTable">
  160. <thead>
  161. <tr>
  162. <td class="tableHead" colspan="2">Server Key and Certificate #1</td>
  163. </tr>
  164. </thead>
  165. <tbody>
  166. <tr class="tableRow">
  167. <td class="tableLabel">Common names</td>
  168. <td class="tableCell">www&#46;imirhil&#46;fr</td>
  169. </tr>
  170. <tr class="tableRow">
  171. <td class="tableLabelTop">Alternative names</td>
  172. <td class="tableCell"> www&#46;imirhil&#46;fr&#32;imirhil&#46;fr </td>
  173. </tr>
  174. <tr class="tableRow">
  175. <td class="tableLabel">Prefix handling</td>
  176. <td class="tableCell">Both (with and without WWW)</td>
  177. </tr>
  178. <tr class="tableRow">
  179. <td class="tableLabel">Valid from</td>
  180. <td class="tableCell">Sat&#32;Apr&#32;26&#32;18&#58;46&#58;02&#32;UTC&#32;2014</td>
  181. </tr>
  182. <tr class="tableRow">
  183. <td class="tableLabel">Valid until</td>
  184. <td class="tableCell">Mon&#32;Apr&#32;27&#32;08&#58;00&#58;17&#32;UTC&#32;2015 (expires in 7 months and 11 days)</td>
  185. </tr>
  186. <tr class="tableRow">
  187. <td class="tableLabel">Key</td>
  188. <td class="tableCell">RSA 2048 bits</td>
  189. </tr>
  190. <tr class="tableRow">
  191. <td class="tableLabel"> Weak key (Debian) </td>
  192. <td class="tableCell"> No </td>
  193. </tr>
  194. <tr class="tableRow">
  195. <td class="tableLabel">Issuer</td>
  196. <td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA</td>
  197. </tr>
  198. <tr class="tableRow">
  199. <td class="tableLabel">Signature algorithm</td>
  200. <td class="tableCell">SHA256withRSA</td>
  201. </tr>
  202. <tr class="tableRow">
  203. <td class="tableLabel">Extended Validation</td>
  204. <td class="tableCell">No</td>
  205. </tr>
  206. <tr class="tableRow">
  207. <td class="tableLabel">Revocation information</td>
  208. <td class="tableCell">
  209. CRL, OCSP </td>
  210. </tr>
  211. <tr class="tableRow">
  212. <td class="tableLabel">Revocation status</td>
  213. <td class="tableCell">Good (not revoked)</td>
  214. </tr>
  215. <tr class="tableRow">
  216. <td class="tableLabel"><font color=green>Trusted</font></td>
  217. <td class="tableCell"><font color=green><b>Yes</b></font></td>
  218. </tr>
  219. </tbody>
  220. </table>
  221. <br><br>
  222. <img class="tIcon" src="/images/icon-certificates.png" width="65" height="50" alt="">
  223. <table class="reportTable">
  224. <thead>
  225. <tr>
  226. <td class="tableHead" colspan="2">Additional Certificates (if supplied)</td>
  227. </tr>
  228. </thead>
  229. <tbody>
  230. <tr class="tableRow">
  231. <td class="tableLabel">Certificates provided</td>
  232. <td class="tableCell">2 (3187 bytes)</td>
  233. </tr>
  234. <tr class="tableRow">
  235. <td class="tableLabel">Chain issues</td>
  236. <td class="tableCell">None</font></td>
  237. </tr>
  238. <tr class="tableSeparator"><td class="tableSubHead" colspan="2">#2</td></tr>
  239. <tr class="tableRow">
  240. <td class="tableLabel">Subject</td>
  241. <td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA <br>
  242. <span style="color: grey">SHA1: f691fc87efb3135354225a10e127e911d1c7f8cf</span></td>
  243. </tr>
  244. <tr class="tableRow">
  245. <td class="tableLabel">Valid until</td>
  246. <td class="tableCell">Tue&#32;Oct&#32;24&#32;20&#58;54&#58;17&#32;UTC&#32;2017 (expires in 3 years and 1 month)</td>
  247. </tr>
  248. <tr class="tableRow">
  249. <td class="tableLabel">Key</td>
  250. <td class="tableCell">RSA 2048 bits</td>
  251. </tr>
  252. <tr>
  253. <td class="tableLabel">Issuer</td>
  254. <td class="tableCell">StartCom&#32;Certification&#32;Authority</td>
  255. </tr>
  256. <tr class="tableRow">
  257. <td class="tableLabel"><font color=#F88017>Signature algorithm</font></td>
  258. <td class="tableCell"><font color=#F88017>SHA1withRSA
  259. &nbsp; <b>WEAK</b></font></td>
  260. </tbody>
  261. </table>
  262. <br><br>
  263. <img class="tIcon" src="/images/icon-chain.gif" width="65" height="50" alt="">
  264. <table class="reportTable">
  265. <thead>
  266. <tr>
  267. <td class="tableHead" colspan="3">Certification Paths</td>
  268. </tr>
  269. </thead>
  270. <tbody>
  271. <tr class="tableSeparator"><td class="tableSubHead" colspan="3">Path #1: Trusted </td></tr>
  272. <tr class="tableRow">
  273. <td class="tableCell" style="width: 75; text-align: right"><b>1</b></td>
  274. <td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
  275. Sent by server
  276. </td>
  277. <td class="tableCell">www&#46;imirhil&#46;fr
  278. <br>
  279. <span style="color: grey">SHA1: caa04d0b1d484aadb722262f877bc879e7720bb5</span>
  280. <br>
  281. RSA 2048 bits
  282. /
  283. SHA256withRSA
  284. </td>
  285. </tr>
  286. <tr class="tableRow">
  287. <td class="tableCell" style="width: 75; text-align: right"><b>2</b></td>
  288. <td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
  289. Sent by server
  290. </td>
  291. <td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA
  292. <br>
  293. <span style="color: grey">SHA1: f691fc87efb3135354225a10e127e911d1c7f8cf</span>
  294. <br>
  295. RSA 2048 bits
  296. /
  297. <font color=#F88017>SHA1withRSA</font>
  298. <br><font color=#F88017><b>WEAK SIGNATURE</b></font> </td>
  299. </tr>
  300. <tr class="tableRow">
  301. <td class="tableCell" style="width: 75; text-align: right"><b>3</b></td>
  302. <td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
  303. <font color=green>In trust store</font>
  304. </td>
  305. <td class="tableCell">StartCom&#32;Certification&#32;Authority
  306. <br>
  307. <span style="color: grey">SHA1: a3f1333fe242bfcfc5d14e8f394298406810d1a0</span>
  308. <br>
  309. RSA 4096 bits
  310. /
  311. SHA256withRSA
  312. </td>
  313. </tr>
  314. <tr class="tableSeparator"><td class="tableSubHead" colspan="3">Path #2: Trusted </td></tr>
  315. <tr class="tableRow">
  316. <td class="tableCell" style="width: 75; text-align: right"><b>1</b></td>
  317. <td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
  318. Sent by server
  319. </td>
  320. <td class="tableCell">www&#46;imirhil&#46;fr
  321. <br>
  322. <span style="color: grey">SHA1: caa04d0b1d484aadb722262f877bc879e7720bb5</span>
  323. <br>
  324. RSA 2048 bits
  325. /
  326. SHA256withRSA
  327. </td>
  328. </tr>
  329. <tr class="tableRow">
  330. <td class="tableCell" style="width: 75; text-align: right"><b>2</b></td>
  331. <td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
  332. Sent by server
  333. </td>
  334. <td class="tableCell">StartCom&#32;Class&#32;1&#32;Primary&#32;Intermediate&#32;Server&#32;CA
  335. <br>
  336. <span style="color: grey">SHA1: f691fc87efb3135354225a10e127e911d1c7f8cf</span>
  337. <br>
  338. RSA 2048 bits
  339. /
  340. <font color=#F88017>SHA1withRSA</font>
  341. <br><font color=#F88017><b>WEAK SIGNATURE</b></font> </td>
  342. </tr>
  343. <tr class="tableRow">
  344. <td class="tableCell" style="width: 75; text-align: right"><b>3</b></td>
  345. <td class="tableCell" style="width: 125; text-align: center; padding-left: 10px; padding-right: 10px; font-size: 11px">
  346. <font color=green>In trust store</font>
  347. </td>
  348. <td class="tableCell">StartCom&#32;Certification&#32;Authority
  349. <br>
  350. <span style="color: grey">SHA1: 3e2bf7f2031b96f38ce6c4d8a85d3e2d58476a0f</span>
  351. <br>
  352. RSA 4096 bits
  353. /
  354. SHA1withRSA
  355. <br><font color="gray">Weak or insecure signature, but no impact on root certificates</b></font> </td>
  356. </tr>
  357. </tbody>
  358. </table>
  359. </div>
  360. </div>
  361. <div class="reportSection">
  362. <div class="sectionTitle">Configuration</div>
  363. <div class="sectionBody">
  364. <!-- PROTOCOLS -->
  365. <img class="tIcon" src="/images/icon-protocol.gif" width="65" height="50" alt="">
  366. <table class="reportTable">
  367. <thead>
  368. <tr>
  369. <td class="tableHead" colspan="2">Protocols</td>
  370. </tr>
  371. </thead>
  372. <tbody>
  373. <tr class="tableRow">
  374. <td class="tableLeft"><font color=green>TLS 1.2</font></td>
  375. <td class="tableRight"><font color=green>Yes</font></td>
  376. </tr>
  377. <tr class="tableRow">
  378. <td class="tableLeft">TLS 1.1</td>
  379. <td class="tableRight"> Yes </td>
  380. </tr>
  381. <tr class="tableRow">
  382. <td class="tableLeft">TLS 1.0</td>
  383. <td class="tableRight"> Yes </td>
  384. </tr>
  385. <tr class="tableRow">
  386. <td class="tableLeft">SSL 3</td>
  387. <td class="tableRight">No</td>
  388. </tr>
  389. <tr class="tableRow">
  390. <td class="tableLeft">SSL 2</td>
  391. <td class="tableRight">No</td>
  392. </tr>
  393. </tbody>
  394. </table>
  395. <br><br>
  396. <img class="tIcon" src="/images/icon-cipher.gif" width="65" height="50" alt="">
  397. <table class="reportTable">
  398. <thead>
  399. <tr>
  400. <td class="tableHead" colspan="3">Cipher Suites (SSL 3+ suites in server-preferred order; deprecated and SSL 2 suites always at the end)</td>
  401. </tr>
  402. </thead>
  403. <tbody>
  404. <tr class="tableRow">
  405. <td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
  406. &nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
  407. <td class="tableRight">256</td>
  408. </tr>
  409. <tr class="tableRow">
  410. <td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
  411. &nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
  412. <td class="tableRight">256</td>
  413. </tr>
  414. <tr class="tableRow">
  415. <td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  416. &nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
  417. <td class="tableRight">256</td>
  418. </tr>
  419. <tr class="tableRow">
  420. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0x9f</code>)
  421. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  422. </td>
  423. <td class="tableRight">256</td>
  424. </tr>
  425. <tr class="tableRow">
  426. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA256 (<code>0x6b</code>)
  427. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  428. </td>
  429. <td class="tableRight">256</td>
  430. </tr>
  431. <tr class="tableRow">
  432. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x39</code>)
  433. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  434. </td>
  435. <td class="tableRight">256</td>
  436. </tr>
  437. <tr class="tableRow">
  438. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;CAMELLIA&#95;256&#95;CBC&#95;SHA (<code>0x88</code>)
  439. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  440. </td>
  441. <td class="tableRight">256</td>
  442. </tr>
  443. <tr class="tableRow">
  444. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0x9d</code>)
  445. </td>
  446. <td class="tableRight">256</td>
  447. </tr>
  448. <tr class="tableRow">
  449. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA256 (<code>0x3d</code>)
  450. </td>
  451. <td class="tableRight">256</td>
  452. </tr>
  453. <tr class="tableRow">
  454. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x35</code>)
  455. </td>
  456. <td class="tableRight">256</td>
  457. </tr>
  458. <tr class="tableRow">
  459. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;CAMELLIA&#95;256&#95;CBC&#95;SHA (<code>0x84</code>)
  460. </td>
  461. <td class="tableRight">256</td>
  462. </tr>
  463. <tr class="tableRow">
  464. <td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0xc02f</code>)
  465. &nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
  466. <td class="tableRight">128</td>
  467. </tr>
  468. <tr class="tableRow">
  469. <td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA256 (<code>0xc027</code>)
  470. &nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
  471. <td class="tableRight">128</td>
  472. </tr>
  473. <tr class="tableRow">
  474. <td class="tableLeft">TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0xc013</code>)
  475. &nbsp; <span class=dhParams> ECDH 256 bits (eq. 3072 bits RSA) &nbsp; FS</span> </td>
  476. <td class="tableRight">128</td>
  477. </tr>
  478. <tr class="tableRow">
  479. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0x9e</code>)
  480. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  481. </td>
  482. <td class="tableRight">128</td>
  483. </tr>
  484. <tr class="tableRow">
  485. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA256 (<code>0x67</code>)
  486. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  487. </td>
  488. <td class="tableRight">128</td>
  489. </tr>
  490. <tr class="tableRow">
  491. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x33</code>)
  492. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  493. </td>
  494. <td class="tableRight">128</td>
  495. </tr>
  496. <tr class="tableRow">
  497. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;CAMELLIA&#95;128&#95;CBC&#95;SHA (<code>0x45</code>)
  498. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  499. </td>
  500. <td class="tableRight">128</td>
  501. </tr>
  502. <tr class="tableRow">
  503. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0x9c</code>)
  504. </td>
  505. <td class="tableRight">128</td>
  506. </tr>
  507. <tr class="tableRow">
  508. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA256 (<code>0x3c</code>)
  509. </td>
  510. <td class="tableRight">128</td>
  511. </tr>
  512. <tr class="tableRow">
  513. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x2f</code>)
  514. </td>
  515. <td class="tableRight">128</td>
  516. </tr>
  517. <tr class="tableRow">
  518. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;CAMELLIA&#95;128&#95;CBC&#95;SHA (<code>0x41</code>)
  519. </td>
  520. <td class="tableRight">128</td>
  521. </tr>
  522. <tr class="tableRow">
  523. <td class="tableLeft">TLS&#95;DHE&#95;RSA&#95;WITH&#95;SEED&#95;CBC&#95;SHA (<code>0x9a</code>)
  524. &nbsp; <span class=dhParams>DH 1024 bits (p: 128, g: 1, Ys: 128) &nbsp; FS</span>
  525. </td>
  526. <td class="tableRight">128</td>
  527. </tr>
  528. <tr class="tableRow">
  529. <td class="tableLeft">TLS&#95;RSA&#95;WITH&#95;SEED&#95;CBC&#95;SHA (<code>0x96</code>)
  530. </td>
  531. <td class="tableRight">128</td>
  532. </tr>
  533. </tbody>
  534. </table>
  535. <br><br>
  536. <img class="tIcon" src="/images/icon-cipher.gif" width="65" height="50" alt="">
  537. <table class="reportTable">
  538. <thead>
  539. <tr>
  540. <td class="tableHead" colspan="4">Handshake Simulation</td>
  541. </tr>
  542. </thead>
  543. <tbody>
  544. <tr>
  545. <td class="tableLeft" width="180">
  546. <a href="viewClient.html?name=Android&amp;version=2.3.7">Android 2&#46;3&#46;7</a>
  547. &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  548. title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
  549. <td class="tableLeft" width="60">
  550. TLS&#32;1&#46;0
  551. </td>
  552. <td class="tableLeft"><span style="font-size: 11px">
  553. TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x33</code>)
  554. &nbsp;<span class="dhParams">
  555. <span class="highlight">FS</span>
  556. </span></span>
  557. </td>
  558. <td class="tableRight">
  559. 128
  560. </td>
  561. </tr>
  562. <tr>
  563. <td class="tableLeft" width="180">
  564. <a href="viewClient.html?name=Android&amp;version=4.0.4">Android 4&#46;0&#46;4</a>
  565. </td>
  566. <td class="tableLeft" width="60">
  567. TLS&#32;1&#46;0
  568. </td>
  569. <td class="tableLeft"><span style="font-size: 11px">
  570. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  571. &nbsp;<span class="dhParams">
  572. <span class="highlight">FS</span>
  573. </span></span>
  574. </td>
  575. <td class="tableRight">
  576. 256
  577. </td>
  578. </tr>
  579. <tr>
  580. <td class="tableLeft" width="180">
  581. <a href="viewClient.html?name=Android&amp;version=4.1.1">Android 4&#46;1&#46;1</a>
  582. </td>
  583. <td class="tableLeft" width="60">
  584. TLS&#32;1&#46;0
  585. </td>
  586. <td class="tableLeft"><span style="font-size: 11px">
  587. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  588. &nbsp;<span class="dhParams">
  589. <span class="highlight">FS</span>
  590. </span></span>
  591. </td>
  592. <td class="tableRight">
  593. 256
  594. </td>
  595. </tr>
  596. <tr>
  597. <td class="tableLeft" width="180">
  598. <a href="viewClient.html?name=Android&amp;version=4.2.2">Android 4&#46;2&#46;2</a>
  599. </td>
  600. <td class="tableLeft" width="60">
  601. TLS&#32;1&#46;0
  602. </td>
  603. <td class="tableLeft"><span style="font-size: 11px">
  604. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  605. &nbsp;<span class="dhParams">
  606. <span class="highlight">FS</span>
  607. </span></span>
  608. </td>
  609. <td class="tableRight">
  610. 256
  611. </td>
  612. </tr>
  613. <tr>
  614. <td class="tableLeft" width="180">
  615. <a href="viewClient.html?name=Android&amp;version=4.3">Android 4&#46;3</a>
  616. </td>
  617. <td class="tableLeft" width="60">
  618. TLS&#32;1&#46;0
  619. </td>
  620. <td class="tableLeft"><span style="font-size: 11px">
  621. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  622. &nbsp;<span class="dhParams">
  623. <span class="highlight">FS</span>
  624. </span></span>
  625. </td>
  626. <td class="tableRight">
  627. 256
  628. </td>
  629. </tr>
  630. <tr>
  631. <td class="tableLeft" width="180">
  632. <a href="viewClient.html?name=Android&amp;version=4.4.2">Android 4&#46;4&#46;2</a>
  633. </td>
  634. <td class="tableLeft" width="60">
  635. <font color="green">TLS&#32;1&#46;2</font>
  636. </td>
  637. <td class="tableLeft"><span style="font-size: 11px">
  638. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
  639. &nbsp;<span class="dhParams">
  640. <span class="highlight">FS</span>
  641. </span></span>
  642. </td>
  643. <td class="tableRight">
  644. 256
  645. </td>
  646. </tr>
  647. <tr>
  648. <td class="tableLeft" width="180">
  649. <a href="viewClient.html?name=BingBot&amp;version=Dec%202013">BingBot Dec&#32;2013</a>
  650. &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  651. title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
  652. <td class="tableLeft" width="60">
  653. TLS&#32;1&#46;0
  654. </td>
  655. <td class="tableLeft"><span style="font-size: 11px">
  656. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  657. &nbsp;<span class="dhParams">
  658. <span class="highlight">FS</span>
  659. </span></span>
  660. </td>
  661. <td class="tableRight">
  662. 256
  663. </td>
  664. </tr>
  665. <tr>
  666. <td class="tableLeft" width="180">
  667. <a href="viewClient.html?name=BingPreview&amp;version=Jun%202014">BingPreview Jun&#32;2014</a>
  668. </td>
  669. <td class="tableLeft" width="60">
  670. TLS&#32;1&#46;0
  671. </td>
  672. <td class="tableLeft"><span style="font-size: 11px">
  673. TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x39</code>)
  674. &nbsp;<span class="dhParams">
  675. <span class="highlight">FS</span>
  676. </span></span>
  677. </td>
  678. <td class="tableRight">
  679. 256
  680. </td>
  681. </tr>
  682. <tr>
  683. <td class="tableLeft" width="180">
  684. <a href="viewClient.html?name=Chrome&amp;version=37&amp;platform=OS%20X">Chrome 37 / OS&#32;X</a>
  685. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  686. <td class="tableLeft" width="60">
  687. <font color="green">TLS&#32;1&#46;2</font>
  688. </td>
  689. <td class="tableLeft"><span style="font-size: 11px">
  690. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  691. &nbsp;<span class="dhParams">
  692. <span class="highlight">FS</span>
  693. </span></span>
  694. </td>
  695. <td class="tableRight">
  696. 256
  697. </td>
  698. </tr>
  699. <tr>
  700. <td class="tableLeft" width="180">
  701. <a href="viewClient.html?name=Firefox&amp;version=24.2.0%20ESR&amp;platform=Win%207">Firefox 24&#46;2&#46;0&#32;ESR / Win&#32;7</a>
  702. </td>
  703. <td class="tableLeft" width="60">
  704. TLS&#32;1&#46;0
  705. </td>
  706. <td class="tableLeft"><span style="font-size: 11px">
  707. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  708. &nbsp;<span class="dhParams">
  709. <span class="highlight">FS</span>
  710. </span></span>
  711. </td>
  712. <td class="tableRight">
  713. 256
  714. </td>
  715. </tr>
  716. <tr>
  717. <td class="tableLeft" width="180">
  718. <a href="viewClient.html?name=Firefox&amp;version=32&amp;platform=OS%20X">Firefox 32 / OS&#32;X</a>
  719. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  720. <td class="tableLeft" width="60">
  721. <font color="green">TLS&#32;1&#46;2</font>
  722. </td>
  723. <td class="tableLeft"><span style="font-size: 11px">
  724. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  725. &nbsp;<span class="dhParams">
  726. <span class="highlight">FS</span>
  727. </span></span>
  728. </td>
  729. <td class="tableRight">
  730. 256
  731. </td>
  732. </tr>
  733. <tr>
  734. <td class="tableLeft" width="180">
  735. <a href="viewClient.html?name=Googlebot&amp;version=Jun%202014">Googlebot Jun&#32;2014</a>
  736. </td>
  737. <td class="tableLeft" width="60">
  738. TLS&#32;1&#46;0
  739. </td>
  740. <td class="tableLeft"><span style="font-size: 11px">
  741. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  742. &nbsp;<span class="dhParams">
  743. <span class="highlight">FS</span>
  744. </span></span>
  745. </td>
  746. <td class="tableRight">
  747. 256
  748. </td>
  749. </tr>
  750. <tr>
  751. <td class="tableLeft" width="180">
  752. <a href="viewClient.html?name=IE&amp;version=6&amp;platform=XP">IE 6 / XP</a>
  753. &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  754. title="Browser effectively does not support Forward Secrecy.">No FS <sup>1</sup></span> &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  755. title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
  756. <td class="tableLeft" colspan="2">
  757. <font color="red">Protocol&#32;or&#32;cipher&#32;suite&#32;mismatch</font>
  758. </td>
  759. <td class="tableRight">
  760. <font color="red">Fail<sup>3</sup></font>
  761. </td>
  762. </tr>
  763. <tr>
  764. <td class="tableLeft" width="180">
  765. <a href="viewClient.html?name=IE&amp;version=7&amp;platform=Vista">IE 7 / Vista</a>
  766. </td>
  767. <td class="tableLeft" width="60">
  768. TLS&#32;1&#46;0
  769. </td>
  770. <td class="tableLeft"><span style="font-size: 11px">
  771. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  772. &nbsp;<span class="dhParams">
  773. <span class="highlight">FS</span>
  774. </span></span>
  775. </td>
  776. <td class="tableRight">
  777. 256
  778. </td>
  779. </tr>
  780. <tr>
  781. <td class="tableLeft" width="180">
  782. <a href="viewClient.html?name=IE&amp;version=8&amp;platform=XP">IE 8 / XP</a>
  783. &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  784. title="Browser effectively does not support Forward Secrecy.">No FS <sup>1</sup></span> &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  785. title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
  786. <td class="tableLeft" colspan="2">
  787. <font color="red">Protocol&#32;or&#32;cipher&#32;suite&#32;mismatch</font>
  788. </td>
  789. <td class="tableRight">
  790. <font color="red">Fail<sup>3</sup></font>
  791. </td>
  792. </tr>
  793. <tr>
  794. <td class="tableLeft" width="180">
  795. <a href="viewClient.html?name=IE&amp;version=8%2d10&amp;platform=Win%207">IE 8&#45;10 / Win&#32;7</a>
  796. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  797. <td class="tableLeft" width="60">
  798. TLS&#32;1&#46;0
  799. </td>
  800. <td class="tableLeft"><span style="font-size: 11px">
  801. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  802. &nbsp;<span class="dhParams">
  803. <span class="highlight">FS</span>
  804. </span></span>
  805. </td>
  806. <td class="tableRight">
  807. 256
  808. </td>
  809. </tr>
  810. <tr>
  811. <td class="tableLeft" width="180">
  812. <a href="viewClient.html?name=IE&amp;version=11&amp;platform=Win%207">IE 11 / Win&#32;7</a>
  813. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  814. <td class="tableLeft" width="60">
  815. <font color="green">TLS&#32;1&#46;2</font>
  816. </td>
  817. <td class="tableLeft"><span style="font-size: 11px">
  818. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  819. &nbsp;<span class="dhParams">
  820. <span class="highlight">FS</span>
  821. </span></span>
  822. </td>
  823. <td class="tableRight">
  824. 256
  825. </td>
  826. </tr>
  827. <tr>
  828. <td class="tableLeft" width="180">
  829. <a href="viewClient.html?name=IE&amp;version=11&amp;platform=Win%208.1">IE 11 / Win&#32;8&#46;1</a>
  830. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  831. <td class="tableLeft" width="60">
  832. <font color="green">TLS&#32;1&#46;2</font>
  833. </td>
  834. <td class="tableLeft"><span style="font-size: 11px">
  835. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
  836. &nbsp;<span class="dhParams">
  837. <span class="highlight">FS</span>
  838. </span></span>
  839. </td>
  840. <td class="tableRight">
  841. 256
  842. </td>
  843. </tr>
  844. <tr>
  845. <td class="tableLeft" width="180">
  846. <a href="viewClient.html?name=IE%20Mobile&amp;version=10&amp;platform=Win%20Phone%208.0">IE&#32;Mobile 10 / Win&#32;Phone&#32;8&#46;0</a>
  847. </td>
  848. <td class="tableLeft" width="60">
  849. TLS&#32;1&#46;0
  850. </td>
  851. <td class="tableLeft"><span style="font-size: 11px">
  852. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  853. &nbsp;<span class="dhParams">
  854. <span class="highlight">FS</span>
  855. </span></span>
  856. </td>
  857. <td class="tableRight">
  858. 256
  859. </td>
  860. </tr>
  861. <tr>
  862. <td class="tableLeft" width="180">
  863. <a href="viewClient.html?name=IE%20Mobile&amp;version=11&amp;platform=Win%20Phone%208.1">IE&#32;Mobile 11 / Win&#32;Phone&#32;8&#46;1</a>
  864. </td>
  865. <td class="tableLeft" width="60">
  866. <font color="green">TLS&#32;1&#46;2</font>
  867. </td>
  868. <td class="tableLeft"><span style="font-size: 11px">
  869. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  870. &nbsp;<span class="dhParams">
  871. <span class="highlight">FS</span>
  872. </span></span>
  873. </td>
  874. <td class="tableRight">
  875. 256
  876. </td>
  877. </tr>
  878. <tr>
  879. <td class="tableLeft" width="180">
  880. <a href="viewClient.html?name=Java&amp;version=6u45">Java 6u45</a>
  881. &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  882. title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
  883. <td class="tableLeft" width="60">
  884. TLS&#32;1&#46;0
  885. </td>
  886. <td class="tableLeft"><span style="font-size: 11px">
  887. TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0x33</code>)
  888. &nbsp;<span class="dhParams">
  889. <span class="highlight">FS</span>
  890. </span></span>
  891. </td>
  892. <td class="tableRight">
  893. 128
  894. </td>
  895. </tr>
  896. <tr>
  897. <td class="tableLeft" width="180">
  898. <a href="viewClient.html?name=Java&amp;version=7u25">Java 7u25</a>
  899. </td>
  900. <td class="tableLeft" width="60">
  901. TLS&#32;1&#46;0
  902. </td>
  903. <td class="tableLeft"><span style="font-size: 11px">
  904. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;CBC&#95;SHA (<code>0xc013</code>)
  905. &nbsp;<span class="dhParams">
  906. <span class="highlight">FS</span>
  907. </span></span>
  908. </td>
  909. <td class="tableRight">
  910. 128
  911. </td>
  912. </tr>
  913. <tr>
  914. <td class="tableLeft" width="180">
  915. <a href="viewClient.html?name=Java&amp;version=8b132">Java 8b132</a>
  916. </td>
  917. <td class="tableLeft" width="60">
  918. <font color="green">TLS&#32;1&#46;2</font>
  919. </td>
  920. <td class="tableLeft"><span style="font-size: 11px">
  921. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;128&#95;GCM&#95;SHA256 (<code>0xc02f</code>)
  922. &nbsp;<span class="dhParams">
  923. <span class="highlight">FS</span>
  924. </span></span>
  925. </td>
  926. <td class="tableRight">
  927. 128
  928. </td>
  929. </tr>
  930. <tr>
  931. <td class="tableLeft" width="180">
  932. <a href="viewClient.html?name=OpenSSL&amp;version=0.9.8y">OpenSSL 0&#46;9&#46;8y</a>
  933. </td>
  934. <td class="tableLeft" width="60">
  935. TLS&#32;1&#46;0
  936. </td>
  937. <td class="tableLeft"><span style="font-size: 11px">
  938. TLS&#95;DHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0x39</code>)
  939. &nbsp;<span class="dhParams">
  940. <span class="highlight">FS</span>
  941. </span></span>
  942. </td>
  943. <td class="tableRight">
  944. 256
  945. </td>
  946. </tr>
  947. <tr>
  948. <td class="tableLeft" width="180">
  949. <a href="viewClient.html?name=OpenSSL&amp;version=1.0.1h">OpenSSL 1&#46;0&#46;1h</a>
  950. </td>
  951. <td class="tableLeft" width="60">
  952. <font color="green">TLS&#32;1&#46;2</font>
  953. </td>
  954. <td class="tableLeft"><span style="font-size: 11px">
  955. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
  956. &nbsp;<span class="dhParams">
  957. <span class="highlight">FS</span>
  958. </span></span>
  959. </td>
  960. <td class="tableRight">
  961. 256
  962. </td>
  963. </tr>
  964. <tr>
  965. <td class="tableLeft" width="180">
  966. <a href="viewClient.html?name=Safari&amp;version=5.1.9&amp;platform=OS%20X%2010.6.8">Safari 5&#46;1&#46;9 / OS&#32;X&#32;10&#46;6&#46;8</a>
  967. </td>
  968. <td class="tableLeft" width="60">
  969. TLS&#32;1&#46;0
  970. </td>
  971. <td class="tableLeft"><span style="font-size: 11px">
  972. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  973. &nbsp;<span class="dhParams">
  974. <span class="highlight">FS</span>
  975. </span></span>
  976. </td>
  977. <td class="tableRight">
  978. 256
  979. </td>
  980. </tr>
  981. <tr>
  982. <td class="tableLeft" width="180">
  983. <a href="viewClient.html?name=Safari&amp;version=6&amp;platform=iOS%206.0.1">Safari 6 / iOS&#32;6&#46;0&#46;1</a>
  984. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  985. <td class="tableLeft" width="60">
  986. <font color="green">TLS&#32;1&#46;2</font>
  987. </td>
  988. <td class="tableLeft"><span style="font-size: 11px">
  989. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
  990. &nbsp;<span class="dhParams">
  991. <span class="highlight">FS</span>
  992. </span></span>
  993. </td>
  994. <td class="tableRight">
  995. 256
  996. </td>
  997. </tr>
  998. <tr>
  999. <td class="tableLeft" width="180">
  1000. <a href="viewClient.html?name=Safari&amp;version=7&amp;platform=iOS%207.1">Safari 7 / iOS&#32;7&#46;1</a>
  1001. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  1002. <td class="tableLeft" width="60">
  1003. <font color="green">TLS&#32;1&#46;2</font>
  1004. </td>
  1005. <td class="tableLeft"><span style="font-size: 11px">
  1006. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
  1007. &nbsp;<span class="dhParams">
  1008. <span class="highlight">FS</span>
  1009. </span></span>
  1010. </td>
  1011. <td class="tableRight">
  1012. 256
  1013. </td>
  1014. </tr>
  1015. <tr>
  1016. <td class="tableLeft" width="180">
  1017. <a href="viewClient.html?name=Safari&amp;version=8&amp;platform=iOS%208.0%20Beta">Safari 8 / iOS&#32;8&#46;0&#32;Beta</a>
  1018. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  1019. <td class="tableLeft" width="60">
  1020. <font color="green">TLS&#32;1&#46;2</font>
  1021. </td>
  1022. <td class="tableLeft"><span style="font-size: 11px">
  1023. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
  1024. &nbsp;<span class="dhParams">
  1025. <span class="highlight">FS</span>
  1026. </span></span>
  1027. </td>
  1028. <td class="tableRight">
  1029. 256
  1030. </td>
  1031. </tr>
  1032. <tr>
  1033. <td class="tableLeft" width="180">
  1034. <a href="viewClient.html?name=Safari&amp;version=6.0.4&amp;platform=OS%20X%2010.8.4">Safari 6&#46;0&#46;4 / OS&#32;X&#32;10&#46;8&#46;4</a>
  1035. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  1036. <td class="tableLeft" width="60">
  1037. TLS&#32;1&#46;0
  1038. </td>
  1039. <td class="tableLeft"><span style="font-size: 11px">
  1040. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA (<code>0xc014</code>)
  1041. &nbsp;<span class="dhParams">
  1042. <span class="highlight">FS</span>
  1043. </span></span>
  1044. </td>
  1045. <td class="tableRight">
  1046. 256
  1047. </td>
  1048. </tr>
  1049. <tr>
  1050. <td class="tableLeft" width="180">
  1051. <a href="viewClient.html?name=Safari&amp;version=7&amp;platform=OS%20X%2010.9">Safari 7 / OS&#32;X&#32;10&#46;9</a>
  1052. &nbsp;<span class="dhParams"><font color=green>R</font></span> </td>
  1053. <td class="tableLeft" width="60">
  1054. <font color="green">TLS&#32;1&#46;2</font>
  1055. </td>
  1056. <td class="tableLeft"><span style="font-size: 11px">
  1057. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;CBC&#95;SHA384 (<code>0xc028</code>)
  1058. &nbsp;<span class="dhParams">
  1059. <span class="highlight">FS</span>
  1060. </span></span>
  1061. </td>
  1062. <td class="tableRight">
  1063. 256
  1064. </td>
  1065. </tr>
  1066. <tr>
  1067. <td class="tableLeft" width="180">
  1068. <a href="viewClient.html?name=Yahoo%20Slurp&amp;version=Jun%202014">Yahoo&#32;Slurp Jun&#32;2014</a>
  1069. &nbsp; <span class="dhParams" style="color: #F88017; cursor: help"
  1070. title="Browser does not support Server Name Indication.">No SNI <sup>2</sup></span> </td>
  1071. <td class="tableLeft" width="60">
  1072. <font color="green">TLS&#32;1&#46;2</font>
  1073. </td>
  1074. <td class="tableLeft"><span style="font-size: 11px">
  1075. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
  1076. &nbsp;<span class="dhParams">
  1077. <span class="highlight">FS</span>
  1078. </span></span>
  1079. </td>
  1080. <td class="tableRight">
  1081. 256
  1082. </td>
  1083. </tr>
  1084. <tr>
  1085. <td class="tableLeft" width="180">
  1086. <a href="viewClient.html?name=YandexBot&amp;version=Sep%202014">YandexBot Sep&#32;2014</a>
  1087. </td>
  1088. <td class="tableLeft" width="60">
  1089. <font color="green">TLS&#32;1&#46;2</font>
  1090. </td>
  1091. <td class="tableLeft"><span style="font-size: 11px">
  1092. TLS&#95;ECDHE&#95;RSA&#95;WITH&#95;AES&#95;256&#95;GCM&#95;SHA384 (<code>0xc030</code>)
  1093. &nbsp;<span class="dhParams">
  1094. <span class="highlight">FS</span>
  1095. </span></span>
  1096. </td>
  1097. <td class="tableRight">
  1098. 256
  1099. </td>
  1100. </tr>
  1101. <tr><td colspan="4">
  1102. <font color=grey>(1) Clients that do not support Forward Secrecy (FS) are excluded when determining support for it.</font>
  1103. </td></tr>
  1104. <tr><td colspan="4">
  1105. <font color=grey>(2) No support for virtual SSL hosting (SNI). Connects to the default site if the server uses SNI.</font>
  1106. </td></tr>
  1107. <tr><td colspan="4">
  1108. <font color=grey>(3) Only first connection attempt simulated. Browsers tend to retry with a lower protocol version.</font>
  1109. </td></tr>
  1110. <tr><td colspan="4">
  1111. <font color=grey>(R) Denotes a reference browser or client, with which we expect better effective security.</font>
  1112. </td></tr>
  1113. <tr><td colspan="4">
  1114. <font color=grey>(All) We use defaults, but some platforms do not use their best protocols and features (e.g., Java 6 & 7, older IE).</font>
  1115. </td></tr>
  1116. </tbody>
  1117. </table>
  1118. <br><br>
  1119. <img class="tIcon" src="/images/icon-protocol-details.gif" width="65" height="50" alt="">
  1120. <table class="reportTable">
  1121. <thead>
  1122. <tr>
  1123. <td class="tableHead" colspan="2">Protocol Details</td>
  1124. </tr>
  1125. </thead>
  1126. <tbody>
  1127. <tr class="tableRow">
  1128. <td class="tableLabel"><font color=green>Secure Renegotiation</font></td>
  1129. <td class="tableCell"><font color=green><b>Supported</b></font></td>
  1130. </tr>
  1131. <tr class="tableRow">
  1132. <td class="tableLabel">Secure Client-Initiated Renegotiation</td>
  1133. <td class="tableCell">No</td>
  1134. </tr>
  1135. <tr class="tableRow">
  1136. <td class="tableLabel">Insecure Client-Initiated Renegotiation</td>
  1137. <td class="tableCell">No</td>
  1138. </tr>
  1139. <tr class="tableRow">
  1140. <td class="tableLabel">BEAST attack</td>
  1141. <td class="tableCell">
  1142. Not mitigated server-side (<a href="https://community.qualys.com/blogs/securitylabs/2013/09/10/is-beast-still-a-threat">more info</a>)
  1143. &nbsp;<span class=dhParams>&nbsp;TLS 1.0: <code>0xc014</code></span>
  1144. </td>
  1145. </tr>
  1146. <tr class="tableRow">
  1147. <td class="tableLabel">TLS compression</td>
  1148. <td class="tableCell">No</td>
  1149. </tr>
  1150. <tr class="tableRow">
  1151. <td class="tableLabel">RC4</td>
  1152. <td class="tableCell">No</td>
  1153. </tr>
  1154. <tr class="tableRow">
  1155. <td class="tableLabel">Heartbeat (extension)</td>
  1156. <td class="tableCell">Yes</td>
  1157. </tr>
  1158. <tr class="tableRow">
  1159. <td class="tableLabel">Heartbleed (vulnerability)</td>
  1160. <td class="tableCell">No (<a href="https://community.qualys.com/blogs/securitylabs/2014/04/08/ssl-labs-test-for-the-heartbleed-attack">more info</a>)</td>
  1161. </tr>
  1162. <tr class="tableRow">
  1163. <td class="tableLabel">OpenSSL CCS vuln. (CVE-2014-0224)</td>
  1164. <td class="tableCell">No (<a href="https://community.qualys.com/blogs/securitylabs/2014/06/13/ssl-pulse-49-vulnerable-to-cve-2014-0224-14-exploitable">more info</a>)</td>
  1165. </tr>
  1166. <tr class="tableRow">
  1167. <td class="tableLabel"><font color="green">Forward Secrecy</font></td>
  1168. <td class="tableCell"><font color="green"><b>Yes (with most browsers)</b> &nbsp; <b>ROBUST</b> (<a style="color: green" href="https://community.qualys.com/blogs/securitylabs/2013/06/25/ssl-labs-deploying-forward-secrecy">more info</a>)</font></td>
  1169. </tr>
  1170. <tr class="tableRow">
  1171. <td class="tableLabel">Next Protocol Negotiation</td>
  1172. <td class="tableCell">No</td>
  1173. </tr>
  1174. <tr class="tableRow">
  1175. <td class="tableLabel">Session resumption (caching)</td>
  1176. <td class="tableCell">Yes</td>
  1177. </tr>
  1178. <tr class="tableRow">
  1179. <td class="tableLabel">Session resumption (tickets)</td>
  1180. <td class="tableCell">Yes</td>
  1181. </tr>
  1182. <tr class="tableRow">
  1183. <td class="tableLabel">OCSP stapling</td>
  1184. <td class="tableCell">No</td>
  1185. </tr>
  1186. <tr class="tableRow">
  1187. <td class="tableLabel"><font color=green>Strict Transport Security (HSTS)</font></td>
  1188. <td class="tableCell"><b><font color=green>Yes</font></b> &nbsp; <span class="dhParams">max&#45;age&#61;31536000</span>
  1189. </td>
  1190. </tr>
  1191. <tr class="tableRow">
  1192. <td class="tableLabel">Long handshake intolerance</td>
  1193. <td class="tableCell">No</td>
  1194. </tr>
  1195. <tr class="tableRow">
  1196. <td class="tableLabel">TLS extension intolerance</td>
  1197. <td class="tableCell">No</td>
  1198. </tr>
  1199. <tr class="tableRow">
  1200. <td class="tableLabel">TLS version intolerance</td>
  1201. <td class="tableCell">
  1202. <b><font color="#F88017">
  1203. </font>
  1204. <font color="#666666">
  1205. TLS 2.98&nbsp; </font></b>
  1206. </td>
  1207. </tr>
  1208. <tr class="tableRow">
  1209. <td class="tableLabel">SSL 2 handshake compatibility</td>
  1210. <td class="tableCell"> Yes </td>
  1211. </tr>
  1212. </tbody>
  1213. </table>
  1214. <br><br>
  1215. <img class="tIcon" src="/images/icon-misc.png" width="65" height="50" alt="">
  1216. <table class="reportTable">
  1217. <thead>
  1218. <tr>
  1219. <td class="tableHead" colspan="2">Miscellaneous</td>
  1220. </tr>
  1221. </thead>
  1222. <tbody>
  1223. <tr class="tableRow">
  1224. <td class="tableLabel">Test date</td>
  1225. <td class="tableCell">Wed&#32;Sep&#32;17&#32;23&#58;18&#58;52&#32;UTC&#32;2014</td>
  1226. </tr>
  1227. <tr class="tableRow">
  1228. <td class="tableLabel">Test duration</td>
  1229. <td class="tableCell">117.399 seconds</td>
  1230. </tr>
  1231. <tr class="tableRow">
  1232. <td class="tableLabel">HTTP status code</td>
  1233. <td class="tableCell">
  1234. 302
  1235. </td>
  1236. </tr>
  1237. <tr class="tableRow">
  1238. <td class="tableLabel">HTTP forwarding</td>
  1239. <td class="tableCell">https&#58;&#47;&#47;blog&#46;imirhil&#46;fr</td>
  1240. </tr>
  1241. <tr class="tableRow">
  1242. <td class="tableLabel">HTTP server signature</td>
  1243. <td class="tableCell">Apache</td>
  1244. </tr>
  1245. <tr class="tableRow">
  1246. <td class="tableLabel">Server hostname</td>
  1247. <td class="tableCell"> server&#46;imirhil&#46;fr </td>
  1248. </tr>
  1249. <tr class="tableRow">
  1250. <td class="tableLabel">PCI compliant</td>
  1251. <td class="tableCell"> Yes </td>
  1252. </tr>
  1253. <tr class="tableRow">
  1254. <td class="tableLabel">FIPS-ready</td>
  1255. <td class="tableCell"> No </td>
  1256. </tr>
  1257. </tbody>
  1258. </table>
  1259. <br><br>
  1260. </div>
  1261. </div>
  1262. </div>
  1263. <p class="grayText">SSL Report v1&#46;10&#46;31</p>
  1264. </div>
  1265. </div>
  1266. <div id="pageEnd">
  1267. <div id="copyright">
  1268. <table width=910 border=0 cellpadding=5 cellspacing=0><tr>
  1269. <td style="font-size: 12px">
  1270. Copyright &copy; 2009-2014 <a href="https://www.qualys.com">Qualys, Inc</A>. All Rights Reserved.
  1271. </td><td align=right style="font-size: 12px">
  1272. <a href="/about/terms.html">Terms and Conditions</a>
  1273. </td>
  1274. </tr></table>
  1275. </div>
  1276. </div>
  1277. <script type="text/javascript">
  1278. var _gaq = _gaq || [];
  1279. _gaq.push(['_setAccount', 'UA-9372751-1']);
  1280. _gaq.push(['_trackPageview']);
  1281. (function() {
  1282. var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
  1283. ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
  1284. var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
  1285. })();
  1286. </script>
  1287. </body>
  1288. </html>