Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=telestra.com.au
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 01, 2026
Valid Until
June 30, 2026
46 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
71:22:89:87:69:30:C1:7F:80:77:EC:CE:90:25:B6:D3:5B:91:A8:04:D7:54:62:34:D0:3A:5C:34:9E:C0:C0:C3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
85 domains
telestra.com.au
*.telestra.com.au
*.activate.telestra.com.au
*.active.telestra.com.au
*.easymail.telestra.com.au
*.in.telestra.com.au
*.infraco.telestra.com.au
*.my.telestra.com.au
*.myservices.telestra.com.au
*.mysevices.telestra.com.au
*.online.telestra.com.au
*.vtneers1.telestra.com.au
*.ww25.telestra.com.au
*.acwa.orga.au
*.afca.orga.au
*.africaustraliannetwork.orga.au
*.aqia.orga.au
*.avivo.orga.au
*.barnardos.orga.au
*.barwonhealth.orga.au
*.bbcatholic.orga.au
*.bendigohealth.orga.au
*.campaigncentral.orga.au
*.cara.orga.au
*.cit.orga.au
*.crimcheck.orga.au
*.data.orga.au
*.dianella.orga.au
*.dsa.orga.au
*.eadmissions.orga.au
*.epworth.orga.au
*.fsc.orga.au
*.genu.orga.au
*.georgeinstitute.orga.au
*.girlguidessa.orga.au
*.goodstart.orga.au
*.greeningaustralia.orga.au
*.grha.orga.au
*.hillview.orga.au
*.jezuici.orga.au
*.kehilatnitzan.orga.au
*.landcarewa.orga.au
*.leavingviolenceprogram.orga.au
*.lier.orga.au
*.livetheatre.orga.au
*.lmpa.orga.au
*.mealsonwheelssa.orga.au
*.mensline.orga.au
*.msra.orga.au
orga.au
*.orga.au
*.random.orga.au
*.rch.orga.au
*.rivconmusic.orga.au
*.roleystonemarkets.orga.au
*.rspcaqld.orga.au
*.save-our-wildlife.orga.au
*.schoenstatt.orga.au
*.shira.orga.au
*.sjog.orga.au
*.somerville.orga.au
*.ssaa.orga.au
*.sscs.orga.au
*.svha.orga.au
*.tg.orga.au
*.thp.orga.au
*.vmta.orga.au
*.vpa.orga.au
*.wilderness.orga.au
*.winanga-li.orga.au
*.windgap.orga.au
*.ww16.orga.au
*.ww25.orga.au
pirateproxy.sbs
*.pirateproxy.sbs
*.demo.powerboat.ca
powerboat.ca
*.powerboat.ca
query6.click
*.query6.click
*.hostmaster.xn--homopathieshop-xpb.com
*.report.xn--homopathieshop-xpb.com
*.ww38.xn--homopathieshop-xpb.com
xn--homopathieshop-xpb.com
*.xn--homopathieshop-xpb.com
Other domains in certificate