SSL Certificate Analysis for 0rdp.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=bonjour.au

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 22, 2026

Valid Until

May 23, 2026 86 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

2E:6B:17:06:2E:58:5F:4C:F4:04:DD:53:34:FF:16:5E:BC:66:03:25:34:D6:C3:1C:F1:96:BF:7F:C8:86:E5:06

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

0rdp.com *.0rdp.com

Other domains in certificate

119852.cn *.119852.cn *.aging.119852.cn *.api.119852.cn *.app.119852.cn *.apps.119852.cn *.apset2.119852.cn *.aws.119852.cn *.b.119852.cn *.backup.119852.cn *.cloud.119852.cn *.corp.119852.cn *.cure.119852.cn *.demo.119852.cn *.dev.119852.cn *.ec2.119852.cn *.eks.119852.cn *.external.119852.cn *.g.119852.cn *.hr.119852.cn *.m.119852.cn *.mail.119852.cn *.my.119852.cn *.prod.119852.cn *.qa.119852.cn *.service.119852.cn *.stg.119852.cn *.test.119852.cn *.us-east-1.119852.cn *.us.119852.cn *.v1.119852.cn *.vdi.119852.cn *.vo.119852.cn *.vps-5638171.119852.cn *.vps.119852.cn

*.161sn.8i4.cc *.1m.8i4.cc 8i4.cc *.8i4.cc *.random.8i4.cc *.website.8i4.cc *.ww25.8i4.cc

*.appetit.bonjour.au *.bisous.bonjour.au *.blouze.bonjour.au bonjour.au *.bonjour.au *.le.bonjour.au *.petit.bonjour.au *.ww17.bonjour.au

*.admin.panelv.xyz *.aolehcfu.panelv.xyz *.api.panelv.xyz *.app.panelv.xyz *.assets.panelv.xyz *.backup.panelv.xyz *.ci.panelv.xyz *.cicd-demo.panelv.xyz *.cicd-integration.panelv.xyz *.cpanel.panelv.xyz *.dashboard.panelv.xyz *.demo.panelv.xyz *.dev.panelv.xyz *.hotfix.panelv.xyz *.isp.panelv.xyz *.m.panelv.xyz *.mail.panelv.xyz *.mailer.panelv.xyz *.mailout.panelv.xyz *.marketing.panelv.xyz panelv.xyz *.panelv.xyz *.poc-jenkins.panelv.xyz *.post.panelv.xyz *.qa.panelv.xyz *.qbyztadmin.panelv.xyz *.secure.panelv.xyz *.sitemap.panelv.xyz *.sitemaps.panelv.xyz *.staging.panelv.xyz *.stg.panelv.xyz *.uat.panelv.xyz *.vpn.panelv.xyz *.web.panelv.xyz *.wildcard.panelv.xyz *.ww1.panelv.xyz *.ww2.panelv.xyz *.www.panelv.xyz