Documente Academic
Documente Profesional
Documente Cultură
QualysSSLLabsProjects/SSLServerTest/anrweb.com
Home
Projects
Qualys.com
Contact
Youarehere:Home>Projects>SSLServerTest>anrweb.com
SSLReport:anrweb.com(166.62.0.18)
ScanAnother
Assessedon:ThuJan2206:30:46PST2015|HIDDEN|Clearcache
Summary
OverallRating
Certificate
ProtocolSupport
100
95
KeyExchange
90
CipherStrength
90
20
40
60
80
100
Visitourdocumentationpageformoreinformation,configurationguides,andbooks.Knownissuesaredocumentedhere.
ThisserveracceptstheRC4cipher,whichisweak.GradecappedtoB.MOREINFO
TheserverdoesnotsupportForwardSecrecywiththereferencebrowsers.MOREINFO
ThisserversupportsTLS_FALLBACK_SCSVtopreventprotocoldowngradeattacks.
Authentication
ServerKeyandCertificate#1
Commonnames
anrweb.com
Alternativenames
anrweb.comwww.anrweb.com
Prefixhandling
Both(withandwithoutWWW)
Validfrom
MonJan1921:17:38PST2015
Validuntil
ThuJan1921:17:38PST2017(expiresin1yearand11months)
Key
RSA2048bits(e65537)
Weakkey(Debian)
No
Issuer
GoDaddySecureCertificateAuthorityG2
Signaturealgorithm
SHA256withRSA
ExtendedValidation
No
Revocationinformation
CRL,OCSP
Revocationstatus
Good(notrevoked)
Trusted
Yes
AdditionalCertificates(ifsupplied)
Certificatesprovided
3(3704bytes)
https://www.ssllabs.com/ssltest/analyze.html?d=anrweb.com&hideResults=on
1/5
1/22/2015
QualysSSLLabsProjects/SSLServerTest/anrweb.com
Chainissues
None
#2
GoDaddySecureCertificateAuthorityG2
Subject
Fingerprint:27ac9369faf25207bb2627cefaccbe4ef9c319b8
Validuntil
SatMay0300:00:00PDT2031(expiresin16yearsand3months)
Key
RSA2048bits(e65537)
Issuer
GoDaddyRootCertificateAuthorityG2
Signaturealgorithm
SHA256withRSA
#3
GoDaddyRootCertificateAuthorityG2
Subject
Fingerprint:340b2880f446fcc04e59ed33f52b3d08d6242964
Validuntil
FriMay3000:00:00PDT2031(expiresin16yearsand4months)
Key
RSA2048bits(e65537)
Issuer
TheGoDaddyGroup/GoDaddyClass2CertificationAuthority
Signaturealgorithm
SHA256withRSA
CertificationPaths
Path#1:Trusted
anrweb.com
1
Sentbyserver
Fingerprint:7c23067e5e87188f74b356552d5c872fa78de9c6
RSA2048bits(e65537)/SHA256withRSA
GoDaddySecureCertificateAuthorityG2
Sentbyserver
Fingerprint:27ac9369faf25207bb2627cefaccbe4ef9c319b8
RSA2048bits(e65537)/SHA256withRSA
GoDaddyRootCertificateAuthorityG2Selfsigned
Intruststore
Fingerprint:47beabc922eae80e78783462a79f45c254fde68b
RSA2048bits(e65537)/SHA256withRSA
Path#2:Trusted
anrweb.com
1
Sentbyserver
Fingerprint:7c23067e5e87188f74b356552d5c872fa78de9c6
RSA2048bits(e65537)/SHA256withRSA
GoDaddySecureCertificateAuthorityG2
Sentbyserver
Fingerprint:27ac9369faf25207bb2627cefaccbe4ef9c319b8
RSA2048bits(e65537)/SHA256withRSA
GoDaddyRootCertificateAuthorityG2
Sentbyserver
Fingerprint:340b2880f446fcc04e59ed33f52b3d08d6242964
RSA2048bits(e65537)/SHA256withRSA
TheGoDaddyGroup/GoDaddyClass2CertificationAuthoritySelfsigned
Intruststore
Fingerprint:2796bae63f1801e277261ba0d77770028f20eee4
RSA2048bits(e3)/SHA1withRSA
Weakorinsecuresignature,butnoimpactonrootcertificate
Configuration
Protocols
TLS1.2
Yes
TLS1.1
Yes
TLS1.0
Yes
https://www.ssllabs.com/ssltest/analyze.html?d=anrweb.com&hideResults=on
2/5
1/22/2015
QualysSSLLabsProjects/SSLServerTest/anrweb.com
SSL3
No
SSL2
No
CipherSuites(SSL3+suitesinserverpreferredorderdeprecatedandSSL2suitesalwaysattheend)
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)ECDH256bits(eq.3072bitsRSA)FS
128
TLS_RSA_WITH_AES_128_GCM_SHA256(0x9c)
128
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)WEAK
128
TLS_RSA_WITH_RC4_128_SHA(0x5)WEAK
128
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384(0xc030)ECDH256bits(eq.3072bitsRSA)FS
256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384(0xc028)ECDH256bits(eq.3072bitsRSA)FS
256
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA(0xc014)ECDH256bits(eq.3072bitsRSA)FS
256
TLS_RSA_WITH_AES_256_GCM_SHA384(0x9d)
256
TLS_RSA_WITH_AES_256_CBC_SHA256(0x3d)
256
TLS_RSA_WITH_AES_256_CBC_SHA(0x35)
256
TLS_RSA_WITH_CAMELLIA_256_CBC_SHA(0x84)
256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256(0xc02f)ECDH256bits(eq.3072bitsRSA)FS
128
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA(0xc013)ECDH256bits(eq.3072bitsRSA)FS
128
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA(0xc012)ECDH256bits(eq.3072bitsRSA)FS
112
TLS_RSA_WITH_AES_128_CBC_SHA256(0x3c)
128
TLS_RSA_WITH_AES_128_CBC_SHA(0x2f)
128
TLS_RSA_WITH_CAMELLIA_128_CBC_SHA(0x41)
128
TLS_RSA_WITH_3DES_EDE_CBC_SHA(0xa)
112
TLS_RSA_WITH_SEED_CBC_SHA(0x96)
128
TLS_RSA_WITH_IDEA_CBC_SHA(0x7)
128
HandshakeSimulation
Android2.3.7NoSNI2
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
Android4.0.4
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Android4.1.1
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Android4.2.2
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Android4.3
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Android4.4.2
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
BingBotDec2013NoSNI2
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
BingPreviewJun2014
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
Chrome39/OSXR
TLS1.2
TLS_RSA_WITH_AES_128_GCM_SHA256(0x9c)NoFS
128
Firefox31.3.0ESR/Win7
TLS1.2
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Firefox34/OSXR
TLS1.2
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
GooglebotJun2014
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
IE6/XPNoFS1 NoSNI2
Protocolorciphersuitemismatch
IE7/Vista
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
IE8/XPNoFS1 NoSNI2
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
IE810/Win7R
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
IE11/Win7R
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
IE11/Win10PreviewR
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
IE11/Win8.1R
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
https://www.ssllabs.com/ssltest/analyze.html?d=anrweb.com&hideResults=on
Fail3
3/5
1/22/2015
QualysSSLLabsProjects/SSLServerTest/anrweb.com
IEMobile10/WinPhone8.0
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
IEMobile11/WinPhone8.1
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
Java6u45NoSNI2
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
Java7u25
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Java8b132
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
OpenSSL0.9.8y
TLS1.0
TLS_RSA_WITH_RC4_128_SHA(0x5)NoFSRC4
128
OpenSSL1.0.1h
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
Safari5.1.9/OSX10.6.8
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Safari6/iOS6.0.1R
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
Safari7/iOS7.1R
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
Safari8/iOS8.0BetaR
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
Safari6.0.4/OSX10.8.4R
TLS1.0
TLS_ECDHE_RSA_WITH_RC4_128_SHA(0xc011)FSRC4
128
Safari7/OSX10.9R
TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
YahooSlurpJun2014NoSNI2 TLS1.2
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
YandexBotSep2014
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256(0xc027)FS
128
TLS1.2
(1)ClientsthatdonotsupportForwardSecrecy(FS)areexcludedwhendeterminingsupportforit.
(2)NosupportforvirtualSSLhosting(SNI).ConnectstothedefaultsiteiftheserverusesSNI.
(3)Onlyfirstconnectionattemptsimulated.Browserstendtoretrywithalowerprotocolversion.
(R)Denotesareferencebrowserorclient,withwhichweexpectbettereffectivesecurity.
(All)Weusedefaults,butsomeplatformsdonotusetheirbestprotocolsandfeatures(e.g.,Java6&7,olderIE).
ProtocolDetails
SecureRenegotiation
Supported
SecureClientInitiatedRenegotiation
No
InsecureClientInitiatedRenegotiation
No
BEASTattack
Mitigatedserverside(moreinfo)TLS1.0:0xc011
POODLE(SSLv3)
No,SSL3notsupported(moreinfo)
POODLE(TLS)
No(moreinfo)
Downgradeattackprevention
Yes,TLS_FALLBACK_SCSVsupported(moreinfo)
TLScompression
No
RC4
YesWEAK(moreinfo)
Heartbeat(extension)
Yes
Heartbleed(vulnerability)
No(moreinfo)
OpenSSLCCSvuln.(CVE20140224)
No(moreinfo)
ForwardSecrecy
Withsomebrowsers(moreinfo)
NextProtocolNegotiation(NPN)
No
Sessionresumption(caching)
Yes
Sessionresumption(tickets)
Yes
OCSPstapling
No
StrictTransportSecurity(HSTS)
No
PublicKeyPinning(HPKP)
No
Longhandshakeintolerance
No
TLSextensionintolerance
No
TLSversionintolerance
TLS2.98
SSL2handshakecompatibility
Yes
Miscellaneous
https://www.ssllabs.com/ssltest/analyze.html?d=anrweb.com&hideResults=on
4/5
1/22/2015
QualysSSLLabsProjects/SSLServerTest/anrweb.com
Testdate
ThuJan2206:28:37PST2015
Testduration
128.826seconds
HTTPstatuscode
200
HTTPserversignature
Apache
Serverhostname
ip16662018.ip.secureserver.net
SSLReportv1.11.1
Copyright20092015Qualys,Inc.AllRightsReserved.
https://www.ssllabs.com/ssltest/analyze.html?d=anrweb.com&hideResults=on
TermsandConditions
5/5