EveryCloud Technologies    

 

https://www.ssllabs.com/





Certificate #1: RSA 2048 bits (SHA256withRSA)

Full cryptographic forward secrecy enabled

Deactivated vulnerable Ciphers:  SSLv2 , SSLv3 , RCA4, MD5, DES


Server Key and Certificate #1
Subject*.everycloudtech.com
Fingerprint SHA1: 67c8a455e318ce318f0c3d4335b38fecb717661f
Pin SHA256: VYjofSAUYiSY3AgeAGGI1mSl50/GRy/tBgYh4pw8zNA=
Common names*.everycloudtech.com
Alternative names*.everycloudtech.com everycloudtech.com
Valid fromWed, 18 Jan 2017 15:06:00 UTC
Valid untilSat, 03 Mar 2018 23:54:38 UTC (expires in 1 year and 1 month)
KeyRSA 2048 bits (e 65537)
Weak key (Debian)No
IssuerGo Daddy Secure Certificate Authority - G2
AIA:
Signature algorithmSHA256withRSA
Extended ValidationNo
Certificate TransparencyNo
OCSP Must StapleNo
Revocation informationCRL, OCSP
CRL:
OCSP:
Revocation statusGood (not revoked)
TrustedYes



Additional Certificates (if supplied)
Certificates provided4 (4767 bytes)


#2
SubjectGo Daddy Secure Certificate Authority - G2
Fingerprint SHA1: 27ac9369faf25207bb2627cefaccbe4ef9c319b8
Pin SHA256: 8Rw90Ej3Ttt8RRkrg+WYDS9n7IS03bk5bjP/UXPtaY8=
Valid untilSat, 03 May 2031 07:00:00 UTC (expires in 14 years and 3 months)
KeyRSA 2048 bits (e 65537)
IssuerGo Daddy Root Certificate Authority - G2
Signature algorithmSHA256withRSA
#3
SubjectGo Daddy Root Certificate Authority - G2
Fingerprint SHA1: 340b2880f446fcc04e59ed33f52b3d08d6242964
Pin SHA256: Ko8tivDrEjiY90yGasP6ZpBU4jwXvHqVvQI0GS3GNdA=
Valid untilFri, 30 May 2031 07:00:00 UTC (expires in 14 years and 4 months)
KeyRSA 2048 bits (e 65537)
IssuerThe Go Daddy Group, Inc. / Go Daddy Class 2 Certification Authority
Signature algorithmSHA256withRSA
#4
SubjectThe Go Daddy Group, Inc. / Go Daddy Class 2 Certification Authority   In trust store 
Fingerprint SHA1: 2796bae63f1801e277261ba0d77770028f20eee4
Pin SHA256: VjLZe/p3W/PJnd6lL8JVNBCGQBZynFLdZSTIqcO0SJ8=
Valid untilThu, 29 Jun 2034 17:06:20 UTC (expires in 17 years and 4 months)
KeyRSA 2048 bits (e 3)
IssuerThe Go Daddy Group, Inc. / Go Daddy Class 2 Certification Authority 
Signature algorithmSHA1withRSA  


Certification Paths


Path #1: Trusted
1Sent by server*.everycloudtech.com
Fingerprint SHA1: 67c8a455e318ce318f0c3d4335b38fecb717661f
Pin SHA256: VYjofSAUYiSY3AgeAGGI1mSl50/GRy/tBgYh4pw8zNA=
RSA 2048 bits (e 65537)/ SHA256withRSA
2Sent by serverGo Daddy Secure Certificate Authority - G2
Fingerprint SHA1: 27ac9369faf25207bb2627cefaccbe4ef9c319b8
Pin SHA256: 8Rw90Ej3Ttt8RRkrg+WYDS9n7IS03bk5bjP/UXPtaY8=
RSA 2048 bits (e 65537)/ SHA256withRSA
3In trust storeGo Daddy Root Certificate Authority - G2  
Fingerprint SHA1: 47beabc922eae80e78783462a79f45c254fde68b
Pin SHA256: Ko8tivDrEjiY90yGasP6ZpBU4jwXvHqVvQI0GS3GNdA=
RSA 2048 bits (e 65537)/ SHA256withRSA
Path #2: Trusted
1Sent by server*.everycloudtech.com
Fingerprint SHA1: 67c8a455e318ce318f0c3d4335b38fecb717661f
Pin SHA256: VYjofSAUYiSY3AgeAGGI1mSl50/GRy/tBgYh4pw8zNA=
RSA 2048 bits (e 65537)/ SHA256withRSA
2Sent by serverGo Daddy Secure Certificate Authority - G2
Fingerprint SHA1: 27ac9369faf25207bb2627cefaccbe4ef9c319b8
Pin SHA256: 8Rw90Ej3Ttt8RRkrg+WYDS9n7IS03bk5bjP/UXPtaY8=
RSA 2048 bits (e 65537)/ SHA256withRSA
3Sent by serverGo Daddy Root Certificate Authority - G2
Fingerprint SHA1: 340b2880f446fcc04e59ed33f52b3d08d6242964
Pin SHA256: Ko8tivDrEjiY90yGasP6ZpBU4jwXvHqVvQI0GS3GNdA=
RSA 2048 bits (e 65537)/ SHA256withRSA
4Sent by server 
In trust store
The Go Daddy Group, Inc. / Go Daddy Class 2 Certification Authority
Fingerprint SHA1: 2796bae63f1801e277261ba0d77770028f20eee4
Pin SHA256: VjLZe/p3W/PJnd6lL8JVNBCGQBZynFLdZSTIqcO0SJ8=
RSA 2048 bits (e 3)/ SHA1withRSA



Configuration



Protocols
TLS 1.2Yes
TLS 1.1Yes
TLS 1.0Yes
SSL 3No - Vulnerable Ciphers
SSL 2No - Vulnerable Ciphers



Cipher Suites
# TLS 1.2 (suites in server-preferred order)
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (0xc030)   ECDH secp256r1 (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xc02f)   ECDH secp256r1 (eq. 3072 bits RSA)   FS128
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (0x9f)   DH 2048 bits   FS256
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (0x9e)   DH 2048 bits   FS128
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028)   ECDH secp256r1 (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 (0xc027)   ECDH secp256r1 (eq. 3072 bits RSA)   FS128
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)   ECDH secp256r1 (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)   ECDH secp256r1 (eq. 3072 bits RSA)   FS128
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 (0x6b)   DH 2048 bits   FS256
TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 (0x67)   DH 2048 bits   FS128
TLS_DHE_RSA_WITH_AES_256_CBC_SHA (0x39)   DH 2048 bits   FS256
TLS_DHE_RSA_WITH_AES_128_CBC_SHA (0x33)   DH 2048 bits   FS128
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012)   ECDH secp256r1 (eq. 3072 bits RSA)   FS112
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (0x16)   DH 2048 bits   FS112
TLS_RSA_WITH_AES_256_GCM_SHA384 (0x9d)256
TLS_RSA_WITH_AES_128_GCM_SHA256 (0x9c)128
TLS_RSA_WITH_AES_256_CBC_SHA256 (0x3d)256
TLS_RSA_WITH_AES_128_CBC_SHA256 (0x3c)128
TLS_RSA_WITH_AES_256_CBC_SHA (0x35)256
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f)128
TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa)112
# TLS 1.1 (suites in server-preferred order)
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)   ECDH secp256r1 (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)   ECDH secp256r1 (eq. 3072 bits RSA)   FS128
TLS_DHE_RSA_WITH_AES_256_CBC_SHA (0x39)   DH 2048 bits   FS256
TLS_DHE_RSA_WITH_AES_128_CBC_SHA (0x33)   DH 2048 bits   FS128
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012)   ECDH secp256r1 (eq. 3072 bits RSA)   FS112
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (0x16)   DH 2048 bits   FS112
TLS_RSA_WITH_AES_256_CBC_SHA (0x35)256
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f)128
TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa)112
# TLS 1.0 (suites in server-preferred order)
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)   ECDH secp256r1 (eq. 3072 bits RSA)   FS256
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)   ECDH secp256r1 (eq. 3072 bits RSA)   FS128
TLS_DHE_RSA_WITH_AES_256_CBC_SHA (0x39)   DH 2048 bits   FS256
TLS_DHE_RSA_WITH_AES_128_CBC_SHA (0x33)   DH 2048 bits   FS128
TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA (0xc012)   ECDH secp256r1 (eq. 3072 bits RSA)   FS112
TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA (0x16)   DH 2048 bits   FS112
TLS_RSA_WITH_AES_256_CBC_SHA (0x35)256
TLS_RSA_WITH_AES_128_CBC_SHA (0x2f)128
TLS_RSA_WITH_3DES_EDE_CBC_SHA (0xa)112



Handshake Simulation
Android 2.3.7   No SNI 2RSA 2048 (SHA256)  TLS 1.0TLS_DHE_RSA_WITH_AES_128_CBC_SHA   DH 2048  FS
Android 4.0.4RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
Android 4.1.1RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
Android 4.2.2RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
Android 4.3RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
Android 4.4.2RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Android 5.0.0RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
Android 6.0RSA 2048 (SHA256)  TLS 1.2 > http/1.1TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
Android 7.0RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Baidu Jan 2015RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
BingPreview Jan 2015RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Chrome 49 / XP SP3RSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
Chrome 51 / Win 7  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Firefox 31.3.0 ESR / Win 7RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
Firefox 47 / Win 7  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
Firefox 49 / XP SP3RSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Firefox 49 / Win 7  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Googlebot Feb 2015RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
IE 6 / XP   No FS 1  No SNI 2Server closed connection IE6 Windows XP un-secure connection : everycloudtech.com closed connection
IE 7 / VistaRSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
IE 8 / XP   No FS 1  No SNI 2RSA 2048 (SHA256)  TLS 1.0TLS_RSA_WITH_3DES_EDE_CBC_SHA
IE 8-10 / Win 7  RRSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
IE 11 / Win 7  RRSA 2048 (SHA256)  TLS 1.2TLS_DHE_RSA_WITH_AES_256_GCM_SHA384   DH 2048  FS
IE 11 / Win 8.1  RRSA 2048 (SHA256)  TLS 1.2 > http/1.1TLS_DHE_RSA_WITH_AES_256_GCM_SHA384   DH 2048  FS
IE 10 / Win Phone 8.0RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
IE 11 / Win Phone 8.1  RRSA 2048 (SHA256)  TLS 1.2 > http/1.1TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256   ECDH secp256r1  FS
IE 11 / Win Phone 8.1 Update  RRSA 2048 (SHA256)  TLS 1.2 > http/1.1TLS_DHE_RSA_WITH_AES_256_GCM_SHA384   DH 2048  FS
IE 11 / Win 10  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Edge 13 / Win 10  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Edge 13 / Win Phone 10  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Java 6u45   No SNI 2Client does not support DH parameters > 1024 bits
RSA 2048 (SHA256)   |  TLS 1.0  |  TLS_DHE_RSA_WITH_AES_128_CBC_SHA  |  DH 2048
Java 7u25RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA   ECDH secp256r1  FS
Java 8u31RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256   ECDH secp256r1  FS
OpenSSL 0.9.8yRSA 2048 (SHA256)  TLS 1.0TLS_DHE_RSA_WITH_AES_256_CBC_SHA   DH 2048  FS
OpenSSL 1.0.1l  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
OpenSSL 1.0.2e  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Safari 5.1.9 / OS X 10.6.8RSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
Safari 6 / iOS 6.0.1RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384   ECDH secp256r1  FS
Safari 6.0.4 / OS X 10.8.4  RRSA 2048 (SHA256)  TLS 1.0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA   ECDH secp256r1  FS
Safari 7 / iOS 7.1  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384   ECDH secp256r1  FS
Safari 7 / OS X 10.9  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384   ECDH secp256r1  FS
Safari 8 / iOS 8.4  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384   ECDH secp256r1  FS
Safari 8 / OS X 10.10  RRSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384   ECDH secp256r1  FS
Safari 9 / iOS 9  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Safari 9 / OS X 10.11  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Safari 10 / iOS 10  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Safari 10 / OS X 10.12  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Apple ATS 9 / iOS 9  RRSA 2048 (SHA256)  TLS 1.2 > h2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
Yahoo Slurp Jan 2015RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS
YandexBot Jan 2015RSA 2048 (SHA256)  TLS 1.2TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384   ECDH secp256r1  FS




Protocol Details


Secure RenegotiationSupported
Secure Client-Initiated RenegotiationNo
Insecure Client-Initiated RenegotiationNo


POODLE (SSLv3)No, SSL 3 not supported 
POODLE (TLS)No 
Downgrade attack preventionYes, TLS_FALLBACK_SCSV supported 
SSL/TLS compressionNo
RC4No
Heartbeat (extension)No
Heartbleed (vulnerability)No 
OpenSSL CCS vuln. (CVE-2014-0224)No 
OpenSSL Padding Oracle vuln.
(CVE-2016-2107)
No 
Forward SecrecyYes (with most browsers)   ROBUST
ALPNNo
NPNYes   h2 http/1.1


Session resumption (tickets)Yes
OCSP staplingNo
Strict Transport Security (HSTS)No
HSTS PreloadingNot in: Chrome  Edge  Firefox  IE 
Public Key Pinning (HPKP)No
Public Key Pinning Report-OnlyNo
Long handshake intoleranceNo
TLS extension intoleranceNo
TLS version intoleranceNo
Incorrect SNI alertsNo
Uses common DH primesNo
DH public server param (Ys) reuseNo
ECDH public server param reuseNo
Supported EC Named Curvessecp256r1
SSL 2 handshake compatibilityYes