JSON result object for "http://aranagenzia.it/"

Note: This is not a stable API during the beta. Providing highlighted JSON instead of raw JSON data is therefore intentional. 

{
  "mx_cert_trusted_reason": "certificate does not match supplied URIAll certificate trust checks failed: (self signed).",
  "redirected_to_https": false,
  "mx_has_protocol_tls1": true,
  "mx_a_records_reverse": [
    [
      10,
      [
        [
          "mail.aranagenzia.it"
        ]
      ]
    ],
    [
      20,
      [
        [
          "relayrm.windsoc.net"
        ]
      ]
    ],
    [
      30,
      [
        [
          "relaymi.windsoc.net"
        ]
      ]
    ],
    [
      40,
      [
        [
          "relay.windsoc.net"
        ]
      ]
    ]
  ],
  "mx_has_protocol_tls1_2": true,
  "final_url_is_https": false,
  "openwpm_skipped_due_to_not_reachable": true,
  "final_url": "http://aranagenzia.it/",
  "mx_pfs": true,
  "mx_has_protocol_tls1_1": true,
  "mx_ciphers": {
    "std_128Bit": {
      "severity": "HIGH",
      "finding": "Weak 128 Bit ciphers (SEED, IDEA, RC[2,4]) offered - bad"
    },
    "std_aNULL": {
      "severity": "CRITICAL",
      "finding": "Anonymous NULL Ciphers (no authentication) offered - ugly"
    },
    "std_3DES": {
      "severity": "MEDIUM",
      "finding": "Triple DES Ciphers (Medium)                offered - not too bad"
    }
  },
  "unreachable_exception": "Traceback (most recent call last):\n  File \"/opt/privacyscore/privacyscore/test_suites/network.py\", line 130, in test_site\n    wget_final_url, wget_content, http_error = retrieve_url_with_wget(url)\n  File \"/opt/privacyscore/privacyscore/test_suites/network.py\", line 55, in retrieve_url_with_wget\n    (stdout, stderr) = proc.communicate(timeout=15)\n  File \"/usr/lib/python3.5/subprocess.py\", line 801, in communicate\n    stdout, stderr = self._communicate(input, endtime, timeout)\n  File \"/usr/lib/python3.5/subprocess.py\", line 1447, in _communicate\n    self._check_timeout(endtime, orig_timeout)\n  File \"/usr/lib/python3.5/subprocess.py\", line 829, in _check_timeout\n    raise TimeoutExpired(self.args, orig_timeout)\nsubprocess.TimeoutExpired: Command '['env', 'LC_ALL=C', 'wget', '--no-verbose', 'http://aranagenzia.it/', '-O-', '--no-check-certificate', '--user-agent=\"Mozilla/5.0 (X11; Linux x86_64; rv:53.0) Gecko/20100101 Firefox/53.0\"']' timed out after 15 seconds\n",
  "requests": [],
  "mx_vulnerabilities": {
    "sec_client_renego": {
      "cve": "CVE-2009-3555",
      "severity": "MEDIUM",
      "finding": "Secure Client-Initiated Renegotiation : VULNERABLE, potential DoS threat"
    },
    "beast": {
      "cve": "CVE-2011-3389",
      "severity": "LOW",
      "finding": "BEAST: VULNERABLE -- but also supports higher protocols (possible mitigation): TLSv1.1 TLSv1.2"
    },
    "sweet32": {
      "cve": "CVE-2016-2183, CVE-2016-6329",
      "severity": "LOW",
      "finding": "SWEET32, uses 64 bit block ciphers"
    },
    "fallback_scsv": {
      "cve": "",
      "severity": "MEDIUM",
      "finding": "TLS_FALLBACK_SCSV (RFC 7507) (experimental) : some unexpected 'handshake failure' instead of 'inappropriate fallback' (likely: warning)"
    },
    "LOGJAM_common primes": {
      "cve": "CVE-2015-4000",
      "severity": "HIGH",
      "finding": "common prime 'Postfix' detected"
    },
    "rc4": {
      "cve": "CVE-2013-2566, CVE-2015-2808",
      "severity": "HIGH",
      "finding": "RC4: VULNERABLE, Detected ciphers: ADH-RC4-MD5 RC4-SHA RC4-MD5"
    },
    "poodle_ssl": {
      "cve": "CVE-2014-3566",
      "severity": "HIGH",
      "finding": "POODLE, SSL: VULNERABLE, uses SSLv3+CBC"
    },
    "lucky13": {
      "cve": "CVE-2013-0169",
      "severity": "LOW",
      "finding": "potentially vulnerable to LUCKY13, uses cipher block chaining (CBC) ciphers with TLS. Check patches"
    },
    "cbc_ssl3": {
      "cve": "CVE-2011-3389",
      "severity": "MEDIUM",
      "finding": "BEAST: CBC ciphers for SSL3: DHE-RSA-AES256-SHA DHE-RSA-CAMELLIA256-SHA ADH-AES256-SHA ADH-CAMELLIA256-SHA AES256-SHA CAMELLIA256-SHA DHE-RSA-AES128-SHA DHE-RSA-SEED-SHA DHE-RSA-CAMELLIA128-SHA ADH-AES128-SHA ADH-SEED-SHA ADH-CAMELLIA128-SHA AES128-SHA SEED-SHA CAMELLIA128-SHA IDEA-CBC-SHA EDH-RSA-DES-CBC3-SHA ADH-DES-CBC3-SHA DES-CBC3-SHA"
    },
    "cbc_tls1": {
      "cve": "CVE-2011-3389",
      "severity": "MEDIUM",
      "finding": "BEAST: CBC ciphers for TLS1: DHE-RSA-AES256-SHA DHE-RSA-CAMELLIA256-SHA ADH-AES256-SHA ADH-CAMELLIA256-SHA AES256-SHA CAMELLIA256-SHA DHE-RSA-AES128-SHA DHE-RSA-SEED-SHA DHE-RSA-CAMELLIA128-SHA ADH-AES128-SHA ADH-SEED-SHA ADH-CAMELLIA128-SHA AES128-SHA SEED-SHA CAMELLIA128-SHA IDEA-CBC-SHA EDH-RSA-DES-CBC3-SHA ADH-DES-CBC3-SHA DES-CBC3-SHA"
    }
  },
  "mx_cert_trusted": false,
  "a_locations": [
    "Italy"
  ],
  "mx_records": [
    [
      10,
      "mx.aranagenzia.it"
    ],
    [
      20,
      "relayrm.windsoc.net"
    ],
    [
      30,
      "relaymi.windsoc.net"
    ],
    [
      40,
      "backup.windsoc.net"
    ]
  ],
  "profilecookies": [],
  "cname_records": [],
  "success": false,
  "web_has_ssl": false,
  "web_ssl_finished": true,
  "mx_locations": [
    "Italy"
  ],
  "mx_has_protocol_tls1_3": false,
  "a_records_reverse": [
    [
      "mxd8.aruba.it"
    ],
    [
      "mxd1.aruba.it"
    ],
    [
      "mxd2.aruba.it"
    ],
    [
      "mxd6.aruba.it"
    ],
    [
      "mxd7.aruba.it"
    ],
    [
      "mxd3.aruba.it"
    ]
  ],
  "mx_ssl_finished": true,
  "leaks": [],
  "headerchecks": {},
  "reachable": false,
  "a_records": [
    "62.149.128.157",
    "62.149.128.160",
    "62.149.128.163",
    "62.149.128.151",
    "62.149.128.154",
    "62.149.128.166"
  ],
  "mx_has_ssl": true,
  "mx_a_records": [
    [
      10,
      [
        "93.147.185.86"
      ]
    ],
    [
      20,
      [
        "195.45.103.6"
      ]
    ],
    [
      30,
      [
        "195.45.114.141"
      ]
    ],
    [
      40,
      [
        "151.4.13.27"
      ]
    ]
  ],
  "responses": [],
  "https": false,
  "mx_has_protocol_sslv3": true,
  "mx_has_protocol_sslv2": false
}
All times are shown in UTC (GMT+0).

About

PrivacyScore is a website scanning tool that allows anyone to benchmark security and privacy features of websites. Rankings are public and can be configured to one's preferences. PrivacyScore helps users, activists, and data protection authorities.

Feedback

We are curious to receive your feedback. Please do not hesitate to contact us if you observe any errors. Site owners can request to exclude their sites from future scans.

Beta Status

PrivacyScore is currently in public beta. While we're giving our very best, we currently cannot guarantee the accuracy of the displayed results and rankings.
 

Privacy Policy · Imprint / Impressum