Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=onehosting.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 11, 2026
Valid Until
August 09, 2026
60 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C1:BA:65:59:82:62:81:3D:5E:70:0F:F6:99:18:60:FA:27:5A:DA:82:9D:E3:66:DE:3B:15:E7:DE:6D:19:6A:D5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
onehosting.it
*.onehosting.it
*.backend.onehosting.it
audiosonic.it
*.audiosonic.it
*.hostmaster.audiosonic.it
*.mail.audiosonic.it
*.webmail.audiosonic.it
*.wwww.audiosonic.it
*.admin.avj.me
*.archive.avj.me
*.auth.avj.me
avj.me
*.avj.me
*.beta.avj.me
*.blog.avj.me
*.cabinet.avj.me
*.doc.avj.me
*.es.avj.me
*.facebook.avj.me
*.greci.avj.me
*.help.avj.me
*.hinde.avj.me
*.hindi.avj.me
*.mail.avj.me
*.out.avj.me
*.public.avj.me
*.remote.avj.me
*.share.avj.me
*.sitemaps.avj.me
*.web.avj.me
*.wildcard.avj.me
*.ww11.avj.me
*.ww25.avj.me
*.ww38.avj.me
bucaresthotels.it
*.bucaresthotels.it
finn.it
*.finn.it
*.mamaiacazare.finn.it
*.soferulamator.finn.it
*.templeofjennifer.finn.it
*.zuma3d.finn.it
gwk.it
*.gwk.it
istituito.it
*.istituito.it
*.admin.supertruck.it
*.analytic.supertruck.it
*.aniqmail.supertruck.it
*.backend.supertruck.it
*.bi.supertruck.it
*.cloud.supertruck.it
*.correu.supertruck.it
*.dashboard.supertruck.it
*.email.supertruck.it
*.eposta.supertruck.it
*.ex02.supertruck.it
*.exch2016.supertruck.it
*.exchangecorp.supertruck.it
*.exchmail.supertruck.it
*.exmail2.supertruck.it
*.imap.supertruck.it
*.mail1.supertruck.it
*.msexch2k13.supertruck.it
*.mx001.supertruck.it
*.mywebmail.supertruck.it
*.ogrencieposta.supertruck.it
*.outlook.supertruck.it
*.owa.supertruck.it
*.pop.supertruck.it
*.pop3.supertruck.it
*.rd.supertruck.it
*.rdweb.supertruck.it
*.remote.supertruck.it
*.smail.supertruck.it
*.smtpa.supertruck.it
*.superset.supertruck.it
supertruck.it
*.supertruck.it
*.webmail.supertruck.it
*.4562435.wwwforum.it
*.backend.wwwforum.it
wwwforum.it
*.wwwforum.it
*.dev.zeto.it
*.hostmaster.zeto.it
zeto.it
*.zeto.it
Other domains in certificate