siver.ru

Score 89/100

Web site information

Website image siver.ru
Web Address
IP Address
CMS
1C-Bitrix
Font Scripts
Font Awesome
JavaScript Frameworks
Lightbox
Web Servers
Nginx
Programming Languages
PHP
Web Frameworks
Bootstrap

SEO data

title
АО "СИВЕР". Российский производитель оборудования для кузовного ремонта автомобилей.
viewport
user-scalable=no, initial-scale=1.0, maximum-scale=1.0, width=device-width
yandex-verification
701683a8f9560ee3
verify-v1
gUuYkjajgTaPkguSMu5Xvep9Ry6+hhxVZ7GAwfq5D0E=
keywords
стапель автостапель SIVER СИВЕР стенд рихтовочный электронная измерительная система платформенный напольный рамный рельсовый сатпель база данных SIVER DATA производство продажа оборудование автосервис кузовной ремонт
description
SIVER производит широкий ассортимент оборудования для кузовного ремонта автомобилей: рихтовочные стапели различной конструкции, электронную изерительную систему

Web site external calls

www.google.com
www.gstatic.com
bitrix.info
ssl.google-analytics.com
mc.yandex.ru
stats.g.doubleclick.net

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
offered
TLS 1.1
offered
TLS 1.2
offered
TLS 1.3
offered with final
ALPN
http/1.1

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
not vulnerable
ROBOT
not vulnerable
SSL renegotiation
not vulnerable
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
not vulnerable, no HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable
fallback SCSV
supported
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable to DROWN on this host and port
DROWN
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=CB697E8D91A4F7B0C22BDE4DEA99E8059D8E8DA32042C4FBC59BC7727F8EBD78
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
--
BEAST
VULNERABLE -- but also supports higher protocols TLSv1.1 TLSv1.2 (likely mitigated)
LUCKY13
potentially vulnerable, uses TLS CBC ciphers
RC4
not vulnerable

Header Responses

Status code
302 Found ('/')
Clock skew
0 seconds from localtime
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
X-Frame-Options
SAMEORIGIN
X-Content-Type-Options
nosniff

Server Defaults

TLS extensions
'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'
TLS session ticket
valid for 600 seconds only (<daily)
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
supported
TLS timestamp
random
Signature algorithm
SHA256 with RSA
Key size
2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
cert_ext_keyusage
Serial number
59BB6CD4D74711107895F651
Fingerprint SHA1
76DE5B083A5281AF3F9D5DF335E9DEAF9404749D
Fingerprint SHA256
CB697E8D91A4F7B0C22BDE4DEA99E8059D8E8DA32042C4FBC59BC7727F8EBD78
Certificate details
-----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIMWbts1NdHERB4lfZRMA0GCSqGSIb3DQEBCwUAMFAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSYwJAYDVQQDEx1H bG9iYWxTaWduIFJTQSBPViBTU0wgQ0EgMjAxODAeFw0yMDEyMTAwODIxNTRaFw0y MjAxMTEwODIxNTRaMFwxCzAJBgNVBAYTAlJVMRYwFAYDVQQIEw1LYWx1Z2EgT2Js YXN0MQ8wDQYDVQQHEwZLYWx1Z2ExETAPBgNVBAoTCEFPIFNJVkVSMREwDwYDVQQD EwhzaXZlci5ydTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANHtQEW2 cZPqu/Glm2OjtilmFupm8Vxsp2tLNa8ZClHK0/V9fxadn+AKphDU3s8fp9rtjsMe pdzAjpq2tBrbCwe1o6fHe/t45DXZRlOB7TVpaAsnZmsMHtjCSLrV7yWLp7acKZBF wqRiyrdJy5LgOCYWYvx9GUoZ9JuT9E3+EV1DBoKwcdCVrpknRMhyrfWqcuY4igBK Xd70j/0rFoHdutoH3vEv08Yu/RtmO4gmvt+JjPbcVqvKcsPjMx8RINm+j48AWsAw 23P3OCx2Upr/8l15YfinteExATMzjuaO9XxU0N2XMnrGZAPQ5tK0JDfYz/vitfC9 s76Pva6Ew8Z+jM0CAwEAAaOCAsMwggK/MA4GA1UdDwEB/wQEAwIFoDCBjgYIKwYB BQUHAQEEgYEwfzBEBggrBgEFBQcwAoY4aHR0cDovL3NlY3VyZS5nbG9iYWxzaWdu LmNvbS9jYWNlcnQvZ3Nyc2FvdnNzbGNhMjAxOC5jcnQwNwYIKwYBBQUHMAGGK2h0 dHA6Ly9vY3NwLmdsb2JhbHNpZ24uY29tL2dzcnNhb3Zzc2xjYTIwMTgwVgYDVR0g BE8wTTBBBgkrBgEEAaAyARQwNDAyBggrBgEFBQcCARYmaHR0cHM6Ly93d3cuZ2xv YmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wCAYGZ4EMAQICMAkGA1UdEwQCMAAwPwYD VR0fBDgwNjA0oDKgMIYuaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc3JzYW92 c3NsY2EyMDE4LmNybDATBgNVHREEDDAKgghzaXZlci5ydTAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAU+O9/8s14Z6jeb48kjYjxhwMC s+swHQYDVR0OBBYEFOjq/xg3ui1ZkMlZwbCrWXTf/XNbMIIBAgYKKwYBBAHWeQIE AgSB8wSB8ADuAHUAKXm+8J45OSHwVnOfY6V35b5XfZxgCvj5TV0mXCVdx4QAAAF2 S74XxQAABAMARjBEAiBfR6iqvrNoyv3AeepXN0Zc3K9DVhz2IHq/k2ORL9kTNwIg Ak/aqWzBR7nS3GBztBzq8xiH4oQqNOmnWRuYgt3aO/IAdQBRo7D1/QF5nFZtuDd4 jwykeswbJ8v3nohCmg3+1IsF5QAAAXZLvhfzAAAEAwBGMEQCIES/9qYW31HGeU4i 2o9Irim8pvEjBSW5Uk5rNO8oOmNXAiBfP4b5tgnswFD/+BowBbgxS/qvkqAGLvOD i9cMdP4AmTANBgkqhkiG9w0BAQsFAAOCAQEAok0eOduuqNO5GaVKkzrrP5b1p+Pn edf0EwIK9bKrYR6/pRSKVeYypAdL/uDshKB+jwY1gFV0BmBTdG1RMIQLiUufKuFO COV1CqwAIN37Ua7ih03jOjzqTmN2BG/mC4QY9uu433oPPPyI9gxA1VjMkUCNWd8p EYKKfNq99wL60TGsC1wfVr0EaiM5t1D67kT5yEgaQtCgA5q3MxO3+DCoJT03/VQ3 eG2hFlOlusvSGsX/aCUY38EoY6IjfGCBsGQch5YOQJH1eEAO3Md9PojIeerUComh P/RGLRcIKnB33qo1NddytwnI3VDna3iM+RmmeOygczoqvaLqVVhUZOKvhQ== -----END CERTIFICATE-----
Common names
siver.ru
Service Name Indication
siver.ru
SubjectAlternative Name
siver.ru
Certificate authority issuers
GlobalSign RSA OV SSL CA 2018 (GlobalSign nv-sa from BE)
Certificate trusted
Ok via SAN and CN (same w/o SNI)
Certificate chain trusted
passed.
Is certificate Extended Validation
no
Days before expiry
expires < 60 days (40)
Valid from
2020-12-10 09:21
Valid until
2022-01-11 09:21
Chain
3
CRL distribution points
http://crl.globalsign.com/gsrsaovsslca2018.crl
Online Certificate Status Protocol URL
http://ocsp.globalsign.com/gsrsaovsslca2018
OCSP stapling
not offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)

Server Preferences

order
server
Which protocol negotiated
Default protocol TLS1.3
negotiated
TLS13-AES-256-GCM-SHA384, 253 bit ECDH (X25519)
order TLSv1
ECDHE-RSA-AES128-SHA
order TLSv1 1
ECDHE-RSA-AES128-SHA
order TLSv1 2
ECDHE-RSA-AES128-GCM-SHA256

Perfect Forward Secrecy

PFS
offered
PFS s
DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA DHE-RSA-CAMELLIA128-SHA256 DHE-RSA-CAMELLIA128-SHA DHE-RSA-CAMELLIA256-SHA256 DHE-RSA-CAMELLIA256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384
ECDHE curves
prime256v1 secp384r1 secp521r1

Ciphers

ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(0xc030)
ECDHE-RSA-AES256-SHA384 ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
(0xc028)
ECDHE-RSA-AES256-SHA ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
(0xc014)
DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
(0x9f)
DHE-RSA-AES256-SHA256 DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
(0x6b)
DHE-RSA-AES256-SHA DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA
(0x39)
ECDHE-RSA-CAMELLIA256-SHA384 ECDH 256 Camellia 256 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
(0xc077)
DHE-RSA-CAMELLIA256-SHA256 DH 2048 Camellia 256 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
(0xc4)
DHE-RSA-CAMELLIA256-SHA DH 2048 Camellia 256 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
(0x88)
AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384
(0x9d)
AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256
(0x3d)
AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA
(0x35)
CAMELLIA256-SHA256 RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
(0xc0)
CAMELLIA256-SHA RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
(0x84)
ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
ECDHE-RSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
(0xc027)
ECDHE-RSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
(0xc013)
DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
(0x9e)
DHE-RSA-AES128-SHA256 DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
(0x67)
DHE-RSA-AES128-SHA DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA
(0x33)
ECDHE-RSA-CAMELLIA128-SHA256 ECDH 256 Camellia 128 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
(0xc076)
DHE-RSA-CAMELLIA128-SHA256 DH 2048 Camellia 128 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
(0xbe)
DHE-RSA-CAMELLIA128-SHA DH 2048 Camellia 128 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
(0x45)
AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256
(0x9c)
AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256
(0x3c)
AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA
(0x2f)
CAMELLIA128-SHA256 RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
(0xba)
CAMELLIA128-SHA RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
(0x41)

Browser Simulations

Android 2.3.7
TLSv1.0 DHE-RSA-AES128-SHA
Android 4.1.1
TLSv1.0 ECDHE-RSA-AES128-SHA
Android 4.3
TLSv1.0 ECDHE-RSA-AES128-SHA
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Chrome 51
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Chrome 57
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Firefox 47
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Firefox 53
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows XP Internet Explorer 6
No connection
Windows Vista Internet Explorer 7
TLSv1.0 ECDHE-RSA-AES128-SHA
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 8
TLSv1.0 ECDHE-RSA-AES128-SHA
Windows 7 Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 8.1 Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 8.1 update Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 10 Edge 13
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Phone 10 Edge 13
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 7 Opera 17
TLSv1.2 ECDHE-RSA-AES128-SHA256
MacOSX 10.6.8 Safari 5.1.9
TLSv1.0 ECDHE-RSA-AES128-SHA
iOS 7 Safari 7
TLSv1.2 ECDHE-RSA-AES128-SHA256
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 7 Tor 7.0.9
TLSv1.0 ECDHE-RSA-AES128-SHA
Java 6 update 45
No connection
Java 7 update 25
TLSv1.0 ECDHE-RSA-AES128-SHA
Java 8 update 31
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.1.1
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256