DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=pobu.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 04, 2026
Valid Until
May 05, 2026 85 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
23:67:4D:9D:5D:B4:7B:F8:1B:D7:EE:E9:42:33:F7:F4:C3:3C:F5:AE:5B:47:07:DE:10:0E:31:29:88:EA:19:73
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
leantwo.com *.leantwo.com *.dev.leantwo.com *.mail.leantwo.com

Other domains in certificate

*.api.bengui.com bengui.com *.bengui.com
chronolist.com *.chronolist.com *.mailer.chronolist.com *.site1.chronolist.com
*.bbs.cucinacalabrese.com cucinacalabrese.com *.cucinacalabrese.com *.files.cucinacalabrese.com *.rustore.cucinacalabrese.com *.sitemap.cucinacalabrese.com *.videos.cucinacalabrese.com *.ww1.cucinacalabrese.com
*.assets.dabdoub.com *.campanha.dabdoub.com dabdoub.com *.dabdoub.com
esforo.com *.esforo.com *.vpn.esforo.com *.ww16.esforo.com
*.blog.homepics.com homepics.com *.homepics.com
ichecked.it *.ichecked.it *.owa.ichecked.it
ivoirienne.com *.ivoirienne.com *.ww38.ivoirienne.com
*.is9dvqp.ksdjoew.club *.it6dlzv.ksdjoew.club ksdjoew.club *.ksdjoew.club *.m3benyk.ksdjoew.club *.rekpxcq.ksdjoew.club
*.connectvpn.lavanga.com lavanga.com *.lavanga.com *.login.lavanga.com
*.api.olx123.com *.assets.olx123.com *.autodiscover.olx123.com *.bbs.olx123.com *.cpanel.olx123.com *.ebdisk.olx123.com *.hostmaster.olx123.com *.lhegdsmtp.olx123.com *.mail.olx123.com olx123.com *.olx123.com *.pop.olx123.com *.remote.olx123.com *.stage.olx123.com *.vpn.olx123.com *.vzqkfkfmoawebdisk.olx123.com *.webdisk.olx123.com *.whm.olx123.com *.www.olx123.com
*.mail.peradeniya.com peradeniya.com *.peradeniya.com *.ww25.peradeniya.com
pobu.org *.pobu.org *.yexli.pobu.org
puria.com *.puria.com *.timber.puria.com
*.cpcalendars.staticstone.com *.mx001.staticstone.com staticstone.com *.staticstone.com
thietkeketcau.com *.thietkeketcau.com *.ww1.thietkeketcau.com
*.ww38.wwwhoover.com wwwhoover.com *.wwwhoover.com
*.mx20.xcarve.com *.root.xcarve.com *.ww25.xcarve.com xcarve.com *.xcarve.com