This server supports SSL 2, which is obsolete and insecure, and can be used against TLS (DROWN attack). Grade set to F.
This server supports insecure cipher suites (see below for details). Grade set to F.
This server supports insecure Diffie-Hellman (DH) key exchange parameters (Logjam). Grade set to F.
This server supports 512-bit export suites and might be vulnerable to the FREAK attack. Grade set to F.
This server is vulnerable to the POODLE attack. If possible, disable SSL 3 to mitigate. Grade capped to C.
This server does not mitigate the CRIME attack. Grade capped to C.
The server supports only older protocols, but not the current best TLS 1.2 or TLS 1.3. Grade capped to C.
This server accepts RC4 cipher, but only with older protocols. Grade capped to B.
There is no support for secure renegotiation.
This server does not support Forward Secrecy with the reference browsers. Grade capped to B.
This server does not support Authenticated encryption (AEAD) cipher suites. Grade capped to B.
This server supports TLS 1.0. Grade capped to B.