reg.jdeiut.ir

Score 81/100

Web site information

Website image reg.jdeiut.ir
Web Address
IP Address
Web Servers
IIS
Operating Systems
Windows Server

SEO data

title
فرم ورود
viewport
width=device-width, initial-scale=1
description
author

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
offered
TLS 1.1
offered
TLS 1.2
offered
TLS 1.3
not offered and downgraded to a weaker protocol
ALPN HTTP2
h2
ALPN
http/1.1

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
no session ticket extension
ROBOT
not vulnerable
SSL renegotiation
not vulnerable
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
potentially VULNERABLE, uses gzip HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable
fallback SCSV
NOT supported
SWEET32
uses 64 bit block ciphers
FREAK
not vulnerable
DROWN
not vulnerable to DROWN on this host and port
DROWN
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=B062B655C83A931B2C57F3C10AD42E212D8654853EBC097FB095301CD3576503
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
--
BEAST
VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)
LUCKY13
potentially vulnerable, uses TLS CBC ciphers
RC4
not vulnerable

Header Responses

Status code
200 OK ('/')
Clock skew
-1 seconds from localtime
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
security headers
--

Server Defaults

TLS extensions
'status request/#5' 'renegotiation info/#65281' 'server name/#0' 'application layer protocol negotiation/#16' 'extended master secret/#23'
TLS session ticket
No lifetime advertised
SSL sessionID support
yes
Session Ticket Resumption
not supported
Session ID Resumption
not supported
TLS timestamp
off by -1 seconds from your localtime
Signature algorithm
SHA256 with RSA
Key size
2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
cert_ext_keyusage
Serial number
03173181CF05593B1C356AF26DD5EB98628A
Fingerprint SHA1
B829CFC002F622C3C46A0E21EA2AC9EA6B6504E7
Fingerprint SHA256
B062B655C83A931B2C57F3C10AD42E212D8654853EBC097FB095301CD3576503
Certificate details
-----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAxcxgc8FWTscNWrybdXrmGKKMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTA5MzAxOTQzMDNaFw0yMTEyMjkxOTQzMDJaMBgxFjAUBgNVBAMT DXJlZy5qZGVpdXQuaXIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy M8FCXFAzZIONvE9r5/W1yxjs1sUQuN8WvTJ1u87bP7a6Nqom3LVHE5zaz599jqLJ 1QZMFEAyBmlvIy1SKmKL5snR5kQaC4jhoMwvSHFhCVgyGdqcG3Oh/2JBCYEriaDT x9Ss56+JTAS9TlFmFWV/7dvJshTT3Y1PHc4nI1kUoHhfnZLek8ZUS77Tc5PhkBqS IKi4dt1CXEmE8JW++h6orwP8yboA8sVu40sVLfKBDnSww5CWFfNcO0A43hV//BQt A3VD2HfwO8ytxnW48ZxTPRfB5iGm+wyos86p4lTogKyfZpdBa7YzKb7CRR8AmrKP vmI7zq4cpuk2hXhnqBXdAgMBAAGjggJJMIICRTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFITcktKJk3m7Oes92sAvEHMFC7TSMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MBgGA1UdEQQRMA+CDXJlZy5qZGVpdXQuaXIwTAYDVR0gBEUwQzAIBgZngQwBAgEw NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwD2XJQv0XcwIhRUGAgw lFaO400TGTO/3wwvIAvMTvFk4wAAAXw4cj5kAAAEAwBIMEYCIQC9wDvSgxQ+yfiS BbrIyzfnF5sJfA8gs2ewoqEYbCdaVwIhAJTCDvUtdTevRBfcSer6rF2KPytOmGYZ vMaBpqZywt+2AHYAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAF8 OHI+2gAABAMARzBFAiBqs3NZ7wjpxETSQCDUl8kzmGQy41G7jMSnZJrVinjtQQIh ANOOo8g8Ux3utuujfrCNvVDuT1XZS8geAw45SwZt+9bkMA0GCSqGSIb3DQEBCwUA A4IBAQAO+coysog/wJGpz9IzW6XAVmTh0oJSkc6WP96xl2mAb7D7CenCsHRfP19Z 0JFMSK/xrs2OQaDx7SVl4LgBIyaI/eyUnH/vmRS3EMyku5lHY14zKgarPJeEyxX2 M86P082mYJXb8EaZnzLk4/BIJDCUYgp4i76AgZDY8kj0RrIlh3NWaUNX2sL/dUzP WS6wFewk4EwCVlcKCimAmQdF50BzEWTT0bh9WAE6BJ/GA2GVNt9P2TF854kBcQqC VIAlKDlMIGSewaGJNoJo8TOo53L5KDKg/6ObR3kAGUQRnxWgNu8X0vRbq4vDDrDn Ez4n+faMMYJEqe+o8GL/iEGwvM8i -----END CERTIFICATE-----
Common names
reg.jdeiut.ir
Service Name Indication
request w/o SNI didn't succeed
SubjectAlternative Name
reg.jdeiut.ir
Certificate authority issuers
R3 (Let's Encrypt from US)
Certificate trusted
Ok via SAN and CN (SNI mandatory)
Certificate chain trusted
Some certificate trust checks failed -> Microsoft (chain incomplete) Linux (chain incomplete) , OK -> Mozilla Apple
Is certificate Extended Validation
no
Days before expiry
80 >= 60 days
Valid from
2021-09-30 21:43
Valid until
2021-12-29 20:43
Chain
2
CRL distribution points
--
Online Certificate Status Protocol URL
http://r3.o.lencr.org
OCSP stapling
offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)

Server Preferences

order
server
Which protocol negotiated
Default protocol TLS1.2
negotiated
ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
order TLSv1
ECDHE-RSA-AES256-SHA
order TLSv1 1
ECDHE-RSA-AES256-SHA
order TLSv1 2
ECDHE-RSA-AES256-GCM-SHA384

Perfect Forward Secrecy

PFS
offered
PFS s
DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA
ECDHE curves
prime256v1 secp384r1

Ciphers

ECDHE-RSA-AES256-GCM-SHA384 ECDH 384 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(0xc030)
ECDHE-RSA-AES256-SHA384 ECDH 384 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
(0xc028)
ECDHE-RSA-AES256-SHA ECDH 384 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
(0xc014)
DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
(0x9f)
AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384
(0x9d)
AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256
(0x3d)
AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA
(0x35)
ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
ECDHE-RSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
(0xc027)
ECDHE-RSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
(0xc013)
DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
(0x9e)
AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256
(0x9c)
AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256
(0x3c)
AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA
(0x2f)
DES-CBC3-SHA RSA 3DES 168 TLS_RSA_WITH_3DES_EDE_CBC_SHA
(0x0a)

Browser Simulations

Android 2.3.7
No connection
Android 4.1.1
TLSv1.0 ECDHE-RSA-AES256-SHA
Android 4.3
TLSv1.0 ECDHE-RSA-AES256-SHA
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Chrome 51
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Chrome 57
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Firefox 47
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Firefox 53
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows XP Internet Explorer 6
No connection
Windows Vista Internet Explorer 7
TLSv1.0 ECDHE-RSA-AES256-SHA
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 8
TLSv1.0 ECDHE-RSA-AES256-SHA
Windows 7 Internet Explorer 11
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
Windows 8.1 Internet Explorer 11
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
Windows 8.1 update Internet Explorer 11
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 10 Edge 13
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Phone 10 Edge 13
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 7 Opera 17
TLSv1.2 ECDHE-RSA-AES128-SHA256
MacOSX 10.6.8 Safari 5.1.9
TLSv1.0 ECDHE-RSA-AES256-SHA
iOS 7 Safari 7
TLSv1.2 ECDHE-RSA-AES256-SHA384
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 7 Tor 7.0.9
TLSv1.0 ECDHE-RSA-AES256-SHA
Java 6 update 45
No connection
Java 7 update 25
TLSv1.0 ECDHE-RSA-AES128-SHA
Java 8 update 31
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.1.1
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384