Vysoká škola báňská - Technická univerzita Ostrava RODOS, Aplikace projektu RODOS (Rozvoj dopravních systémů) publikuje aktuální dopravní situaci na vybraných komunikacích ČR formou jednoduché grafiky. Informace jsou aktualizovány každou půlminutu.
Služba je chráněna certifikátem od certifikační autority, kterou hlavní prohlížeče neznají nebo jí nedůvěřují. V českých podmínkách to znamená nejspíše certifikáty vydané našimi vnitrostátními autoritami (ICA, PostSignum a eIdentity), které sice stát zákonem prohlásil za důvěryhodné, ale které nesplňují mezinárodní podmínky nutné proto, aby je za důvěryhodné pokládali i autoři prohlížečů.
Detailní report z HTTPs analýzy pomocí nástroje testssl.sh
| server | rodos.vsb.cz/158.196.110.20 |
| pre_128cipher |
INFO
{
No 128 cipher limit bug} |
| SSLv2 |
OK
{
not offered} |
| SSLv3 |
OK
{
not offered} |
| TLS1 |
LOW
{
offered (deprecated)} |
| TLS1_1 |
LOW
{
offered (deprecated)} |
| TLS1_2 |
OK
{
offered} |
| TLS1_3 |
OK
{
offered with final} |
| NPN |
INFO
{
not offered} |
| ALPN_HTTP2 |
OK
{
h2} |
| ALPN |
INFO
{
http/1.1} |
|
cipherlist_NULL
zranitelnosti:
CWE-327
|
OK
{
not offered} |
|
cipherlist_aNULL
zranitelnosti:
CWE-327
|
OK
{
not offered} |
|
cipherlist_EXPORT
zranitelnosti:
CWE-327
|
OK
{
not offered} |
|
cipherlist_LOW
zranitelnosti:
CWE-327
|
OK
{
not offered} |
|
cipherlist_3DES_IDEA
zranitelnosti:
CWE-310
|
INFO
{
not offered} |
|
cipherlist_AVERAGE
zranitelnosti:
CWE-310
|
LOW
{
offered} |
| cipherlist_GOOD |
INFO
{
not offered} |
| cipherlist_STRONG |
OK
{
offered} |
| cipher_order |
OK
{
server} |
| protocol_negotiated |
OK
{
Default protocol TLS1.3} |
| cipher_negotiated |
OK
{
TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519)} |
| cipher-tls1_xc00a |
LOW
{
TLSv1 xc00a ECDHE-ECDSA-AES256-SHA ECDH 384 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA} |
| cipher-tls1_xc009 |
LOW
{
TLSv1 xc009 ECDHE-ECDSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA} |
| cipherorder_TLSv1 |
INFO
{
ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA} |
| cipher-tls1_1_xc00a |
LOW
{
TLSv1.1 xc00a ECDHE-ECDSA-AES256-SHA ECDH 384 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA} |
| cipher-tls1_1_xc009 |
LOW
{
TLSv1.1 xc009 ECDHE-ECDSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA} |
| cipherorder_TLSv1_1 |
INFO
{
ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA} |
| cipher-tls1_2_xc02c |
OK
{
TLSv1.2 xc02c ECDHE-ECDSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384} |
| cipher-tls1_2_xc02b |
OK
{
TLSv1.2 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256} |
| cipher-tls1_2_xc024 |
LOW
{
TLSv1.2 xc024 ECDHE-ECDSA-AES256-SHA384 ECDH 384 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384} |
| cipher-tls1_2_xc023 |
LOW
{
TLSv1.2 xc023 ECDHE-ECDSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256} |
| cipher-tls1_2_xc00a |
LOW
{
TLSv1.2 xc00a ECDHE-ECDSA-AES256-SHA ECDH 384 AES 256 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA} |
| cipher-tls1_2_xc009 |
LOW
{
TLSv1.2 xc009 ECDHE-ECDSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA} |
| cipherorder_TLSv1_2 |
INFO
{
ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA} |
| cipher-tls1_3_x1302 |
OK
{
TLSv1.3 x1302 TLS_AES_256_GCM_SHA384 ECDH 253 AESGCM 256 TLS_AES_256_GCM_SHA384} |
| cipher-tls1_3_x1301 |
OK
{
TLSv1.3 x1301 TLS_AES_128_GCM_SHA256 ECDH 253 AESGCM 128 TLS_AES_128_GCM_SHA256} |
| cipherorder_TLSv1_3 |
INFO
{
TLS_AES_256_GCM_SHA384 TLS_AES_128_GCM_SHA256} |
| FS |
OK
{
offered} |
| FS_ciphers |
INFO
{
TLS_AES_256_GCM_SHA384 ECDHE-ECDSA-AES256-GCM-SHA384 ECDHE-ECDSA-AES256-SHA384 ECDHE-ECDSA-AES256-SHA TLS_AES_128_GCM_SHA256 ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-SHA256 ECDHE-ECDSA-AES128-SHA} |
| FS_ECDHE_curves |
OK
{
prime256v1 secp384r1 X25519} |
| TLS_extensions |
INFO
{
'status request/#5' 'renegotiation info/#65281' 'supported versions/#43' 'key share/#51' 'application layer protocol negotiation/#16' 'extended master secret/#23'} |
| TLS_session_ticket |
INFO
{
no -- no lifetime advertised} |
| SSL_sessionID_support |
INFO
{
yes} |
| sessionresumption_ticket |
INFO
{
not supported} |
| sessionresumption_ID |
INFO
{
not supported} |
| TLS_timestamp |
INFO
{
off by 0 seconds from your localtime} |
| certificate_compression |
INFO
{
none} |
| clientAuth |
INFO
{
none} |
| cert_numbers |
INFO
{
1} |
| cert_signatureAlgorithm |
OK
{
ECDSA with SHA384} |
| cert_keySize |
OK
{
EC 256 bits (curve P-256)} |
| cert_keyUsage |
INFO
{
Digital Signature} |
| cert_extKeyUsage |
INFO
{
TLS Web Client Authentication, TLS Web Server Authentication} |
| cert_serialNumber |
INFO
{
4683F1517E5734CF28A498CBD6B48AA0} |
| cert_serialNumberLen |
INFO
{
16} |
| cert_fingerprintSHA1 |
INFO
{
F1AA7F389C6D0DDF6A7BF51E9805A7DC3F0869A0} |
| cert_fingerprintSHA256 |
INFO
{
8CC7B56B406AA15358B9C3C90F9C3CA1B7A988CA361062ADA872166C30797CB9} |
| cert |
INFO
{
-----BEGIN CERTIFICATE----- MIIFhzCCBQygAwIBAgIQRoPxUX5XNM8opJjL1rSKoDAKBggqhkjOPQQDAzBgMQsw CQYDVQQGEwJHUjE3MDUGA1UECgwuSGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2Vh cmNoIEluc3RpdHV0aW9ucyBDQTEYMBYGA1UEAwwPR0VBTlQgVExTIEVDQyAxMB4X DTI1MTIxODE3MTg0MFoXDTI2MTIxODE3MTg0MFowgZkxCzAJBgNVBAYTAkNaMR4w HAYDVQQIDBVNb3JhdnNrb3NsZXpza8O9IGtyYWoxEDAOBgNVBAcMB09zdHJhdmEx QTA/BgNVBAoMOFZ5c29rw6EgxaFrb2xhIGLDocWIc2vDoSAtIFRlY2huaWNrw6Eg dW5pdmVyeml0YSBPc3RyYXZhMRUwEwYDVQQDDAxyb2Rvcy52c2IuY3owWTATBgcq hkjOPQIBBggqhkjOPQMBBwNCAASAmquPBFNFBjYpDGIln+JQn/ydZmRUR2gAXCYZ 1TWy/V15ejokLarVZd3AaQW+fQLRouBHs8TAIqVi+1c32S7ho4IDbDCCA2gwDAYD VR0TAQH/BAIwADAfBgNVHSMEGDAWgBTpmQaNFx+r+5YaWshbXl1e7NqcjzBvBggr BgEFBQcBAQRjMGEwOAYIKwYBBQUHMAKGLGh0dHA6Ly9jcnQuaGFyaWNhLmdyL0hB UklDQS1HRUFOVC1UTFMtRTEuY2VyMCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC10 bHMuaGFyaWNhLmdyMIGJBgNVHREEgYEwf4IMcm9kb3MudnNiLmN6ghNyb2Rvc3dw cm94eTIudnNiLmN6gg5hcHBpdDRpLnZzYi5jeoINcm9kb3MuaXQ0aS5jeoITcm9k b3N3cHJveHkxLnZzYi5jeoITYXBwaXQ0aS10ZXN0LnZzYi5jeoIRcm9kb3MtdGVz dC52c2IuY3owLQYDVR0gBCYwJDAIBgZngQwBAgIwCAYGBACPegEHMA4GDCsGAQQB gc8RAQEBAjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwPQYDVR0fBDYw NDAyoDCgLoYsaHR0cDovL2NybC5oYXJpY2EuZ3IvSEFSSUNBLUdFQU5ULVRMUy1F MS5jcmwwHQYDVR0OBBYEFHyugwN/UXNaE1kA4rHqCZzCkUxXMA4GA1UdDwEB/wQE AwIHgDCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUAr2eIO1ewTt2Pptl+9i6o 64EKx3Fg8CReVdYML+eFhzoAAAGbMoG/AAAABAMARjBEAiA5IltHxX/xArDleIpZ V8uUrzoD4g1QileACrx6dD8WvgIgQZHi9rXp8ugKuVTIaQuBONNf5scBhI50zBfc mtal38kAdgCUTkOH+uzB74HzGSQmqBhlAcfTXzgCAT9yZ31VNy4Z2AAAAZsygb7P AAAEAwBHMEUCIEgSbNcYiMoYRk8PTbNYA0rz9zCm/jpgzCTvIjjJCixWAiEA0B0J hmxlHzWYgpO1fCaU7KgrT7sxi0uzPosCucG37RAAdQDYCVU7lE96/8gWGW+UT4Wr sPj8XodVJg8V0S5yu0VLFAAAAZsygb6dAAAEAwBGMEQCICC16xNIjtoz4bxdIlXt EdmsZS9RFyJ4NJ+kLae46UHdAiABy9jqA+yyEgQ+TzF11KpC+F4YlkFrYO7DOMx2 l/BJLTAKBggqhkjOPQQDAwNpADBmAjEA9WmGGey0HOy1jfLQBKD5dld6mX841cZD wlnTUNlNGuqc67wY9eo9dB9HH1wYNCoIAjEA2KvB6i0QPbMtWMhcdtTdaXJB70+s MxmNvmjKiDs/zTDnPWiXaTQRPdZCYNbNbKSC -----END CERTIFICATE-----} |
| cert_commonName |
OK
{
rodos.vsb.cz} |
| cert_commonName_wo_SNI |
INFO
{
rodos.vsb.cz} |
| cert_subjectAltName |
INFO
{
rodos.vsb.cz rodoswproxy2.vsb.cz appit4i.vsb.cz rodos.it4i.cz rodoswproxy1.vsb.cz appit4i-test.vsb.cz rodos-test.vsb.cz} |
| cert_trust |
OK
{
Ok via SAN and CN (same w/o SNI)} |
| cert_chain_of_trust |
CRITICAL
{
failed (chain incomplete).} |
| cert_certificatePolicies_EV |
INFO
{
no} |
| cert_expirationStatus |
OK
{
169 >= 60 days} |
| cert_notBefore |
INFO
{
2025-12-18 17:18} |
| cert_notAfter |
OK
{
2026-12-18 17:18} |
| cert_extlifeSpan |
OK
{
certificate has no extended life time according to browser forum} |
| cert_eTLS |
INFO
{
not present} |
| cert_crlDistributionPoints |
INFO
{
http://crl.harica.gr/HARICA-GEANT-TLS-E1.crl} |
| cert_ocspURL |
INFO
{
http://ocsp-tls.harica.gr} |
| OCSP_stapling |
OK
{
offered} |
| cert_mustStapleExtension |
INFO
{
--} |
| DNS_CAArecord |
OK
{
issue=harica.gr, issue=letsencrypt.org, issuewild=;} |
| certificate_transparency |
OK
{
yes (certificate extension)} |
| certs_countServer |
INFO
{
2} |
| certs_list_ordering_problem |
INFO
{
no} |
| cert_caIssuers |
INFO
{
GEANT TLS ECC 1 (Hellenic Academic and Research Institutions CA from GR)} |
| intermediate_cert <#1> |
INFO
{
-----BEGIN CERTIFICATE----- MIIDNzCCArygAwIBAgIQQv3c4SYWB+Gl5pNaQAFh3TAKBggqhkjOPQQDAzBsMQsw CQYDVQQGEwJHUjE3MDUGA1UECgwuSGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2Vh cmNoIEluc3RpdHV0aW9ucyBDQTEkMCIGA1UEAwwbSEFSSUNBIFRMUyBFQ0MgUm9v dCBDQSAyMDIxMB4XDTI1MDEwMzExMTQyMVoXDTM5MTIzMTExMTQyMFowYDELMAkG A1UEBhMCR1IxNzA1BgNVBAoMLkhlbGxlbmljIEFjYWRlbWljIGFuZCBSZXNlYXJj aCBJbnN0aXR1dGlvbnMgQ0ExGDAWBgNVBAMMD0dFQU5UIFRMUyBFQ0MgMTB2MBAG ByqGSM49AgEGBSuBBAAiA2IABANPWLwh0Za2UqtbLV7/qNRm78zsttgSuvhn73bU GtxETsVOEZeMUfMjgHw8EwrsSJI9oj0CgZQFFSEY1NJfcxA/NJiOYJUKPsFbpOrY dr0q4g+aBZsXWeh7bMCzx24g/aOCAS0wggEpMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUyRtTgRL+BNUW0aq8mm+3oJUZbsowTQYIKwYBBQUHAQEEQTA/ MD0GCCsGAQUFBzAChjFodHRwOi8vY3J0LmhhcmljYS5nci9IQVJJQ0EtVExTLVJv b3QtMjAyMS1FQ0MuY2VyMBEGA1UdIAQKMAgwBgYEVR0gADAdBgNVHSUEFjAUBggr BgEFBQcDAgYIKwYBBQUHAwEwQgYDVR0fBDswOTA3oDWgM4YxaHR0cDovL2NybC5o YXJpY2EuZ3IvSEFSSUNBLVRMUy1Sb290LTIwMjEtRUNDLmNybDAdBgNVHQ4EFgQU 6ZkGjRcfq/uWGlrIW15dXuzanI8wDgYDVR0PAQH/BAQDAgGGMAoGCCqGSM49BAMD A2kAMGYCMQD2M1caaY2OwmthgmANUQg3LBLI0/2LiCdxa2zNq0G59wVzbjEk0cR/ px52OegIwRACMQCk+iTmBlR6Xfv6igiiaFiPYfN2HfbcYLWbot5DZ2H1b4JVJV+V rga7uu50SDG9hf4= -----END CERTIFICATE-----} |
| intermediate_cert_fingerprintSHA256 <#1> |
INFO
{
6CDF0BA1711E856D228BA00CA04C5C1C3D79944C037B713B155A4EE4B47EC53C} |
| intermediate_cert_notBefore <#1> |
INFO
{
2025-01-03 11:14} |
| intermediate_cert_notAfter <#1> |
OK
{
2039-12-31 11:14} |
| intermediate_cert_expiration <#1> |
OK
{
ok > 40 days} |
| intermediate_cert_chain <#1> |
INFO
{
GEANT TLS ECC 1 <-- HARICA TLS ECC Root CA 2021} |
| intermediate_cert_badOCSP |
OK
{
intermediate certificate(s) is/are ok} |
| HTTP_status_code |
INFO
{
302 Found ('/')
}
|
| HTTP_clock_skew |
INFO
{
-1 seconds from localtime} |
| HTTP_headerTime |
INFO
{
1782936396} |
| HSTS |
LOW
{
not offered} |
| HPKP |
INFO
{
No support for HTTP Public Key Pinning} |
| banner_server |
INFO
{
Microsoft-IIS/10.0} |
| banner_application |
INFO
{
X-AspNet-Version: 4.0.30319, X-Powered-By: ASP.NET, X-Powered-By: ARR/3.0} |
| cookie_count |
INFO
{
2 at '/' (30x detected, better try target URL of 30x)} |
| cookie_secure |
INFO
{
0/2 at '/' marked as secure} |
| cookie_httponly |
INFO
{
0/2 at '/' marked as HttpOnly (30x detected, better try target URL of 30x)} |
| Cache-Control |
INFO
{
private} |
|
banner_reverseproxy
zranitelnosti:
CWE-200
|
INFO
{
--} |
|
heartbleed
zranitelnosti:
CVE-2014-0160
CWE-119
|
OK
{
not vulnerable, no heartbeat extension} |
|
CCS
zranitelnosti:
CVE-2014-0224
CWE-310
|
OK
{
not vulnerable} |
|
ticketbleed
zranitelnosti:
CVE-2016-9244
CWE-200
|
OK
{
no session ticket extension} |
| ROBOT |
OK
{
not vulnerable, no RSA key transport cipher} |
|
secure_renego
zranitelnosti:
CWE-310
|
OK
{
supported} |
|
secure_client_renego
zranitelnosti:
CVE-2011-1473
CWE-310
|
OK
{
not vulnerable} |
|
CRIME_TLS
zranitelnosti:
CVE-2012-4929
CWE-310
|
OK
{
not vulnerable} |
|
BREACH
zranitelnosti:
CVE-2013-3587
CWE-310
|
OK
{
not vulnerable, no gzip/deflate/compress/br HTTP compression - only supplied '/' tested} |
|
POODLE_SSL
zranitelnosti:
CVE-2014-3566
CWE-310
|
OK
{
not vulnerable, no SSLv3} |
| fallback_SCSV |
WARN
{
NOT supported. Pls rerun with POODLE SSL check} |
| SWEET32 |
OK
{
not vulnerable} |
|
FREAK
zranitelnosti:
CVE-2015-0204
CWE-310
|
OK
{
not vulnerable} |
| DROWN |
OK
{
not vulnerable on this host and port} |
| DROWN_hint |
INFO
{
no RSA certificate, can't be used with SSLv2 elsewhere} |
|
LOGJAM
zranitelnosti:
CVE-2015-4000
CWE-310
|
OK
{
not vulnerable, no DH EXPORT ciphers,} |
|
LOGJAM-common_primes
zranitelnosti:
CVE-2015-4000
CWE-310
|
OK
{
no DH key with <= TLS 1.2} |
|
BEAST_CBC_TLS1
zranitelnosti:
CVE-2011-3389
CWE-20
|
MEDIUM
{
ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA} |
|
BEAST
zranitelnosti:
CVE-2011-3389
CWE-20
|
LOW
{
VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)} |
|
LUCKY13
zranitelnosti:
CVE-2013-0169
CWE-310
|
LOW
{
potentially vulnerable, uses TLS CBC ciphers} |
|
winshock
zranitelnosti:
CVE-2014-6321
CWE-94
|
OK
{
not vulnerable} |
| RC4 |
OK
{
not vulnerable} |
| clientsimulation-android_442 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-android_500 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256} |
| clientsimulation-android_60 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256} |
| clientsimulation-android_70 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-android_81 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-android_90 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-android_X |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-chrome_74_win10 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-chrome_79_win10 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-firefox_66_win81 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-firefox_71_win10 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-ie_6_xp |
INFO
{
No connection} |
| clientsimulation-ie_8_win7 |
INFO
{
TLSv1.0 ECDHE-ECDSA-AES256-SHA} |
| clientsimulation-ie_8_xp |
INFO
{
No connection} |
| clientsimulation-ie_11_win7 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-ie_11_win81 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-ie_11_winphone81 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-ie_11_win10 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-edge_15_win10 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-edge_17_win10 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-opera_66_win10 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-safari_9_ios9 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-safari_9_osx1011 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-safari_10_osx1012 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-safari_121_ios_122 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-safari_130_osx_10146 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-apple_ats_9_ios9 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-java_6u45 |
INFO
{
No connection} |
| clientsimulation-java_7u25 |
INFO
{
TLSv1.0 ECDHE-ECDSA-AES128-SHA} |
| clientsimulation-java_8u161 |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-java1102 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-java1201 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-openssl_102e |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-openssl_110l |
INFO
{
TLSv1.2 ECDHE-ECDSA-AES256-GCM-SHA384} |
| clientsimulation-openssl_111d |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| clientsimulation-thunderbird_68_3_1 |
INFO
{
TLSv1.3 TLS_AES_256_GCM_SHA384} |
| rating_spec |
INFO
{
SSL Labs's 'SSL Server Rating Guide' (version 2009q from 2020-01-30)} |
| rating_doc |
INFO
{
https://github.com/ssllabs/research/wiki/SSL-Server-Rating-Guide} |
| protocol_support_score |
INFO
{
0} |
| protocol_support_score_weighted |
INFO
{
0} |
| key_exchange_score |
INFO
{
0} |
| key_exchange_score_weighted |
INFO
{
0} |
| cipher_strength_score |
INFO
{
0} |
| cipher_strength_score_weighted |
INFO
{
0} |
| final_score |
INFO
{
0} |
| overall_grade |
CRITICAL
{
T} |
| grade_cap_reason_1 |
INFO
{
Grade capped to T. Issues with the chain of trust (chain incomplete)} |
| grade_cap_reason_2 |
INFO
{
Grade capped to B. TLS 1.1 offered} |
| grade_cap_reason_3 |
INFO
{
Grade capped to B. TLS 1.0 offered} |
| grade_cap_reason_4 |
INFO
{
Grade capped to A. HSTS is not offered} |
| grade_cap_reason_5 |
INFO
{
Grade capped to A. Does not support TLS_FALLBACK_SCSV} |
| scanTime |
INFO
{
73} |