Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=podemus.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 20, 2026
Valid Until
May 21, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:E1:BA:E3:67:ED:3F:F4:45:02:DD:D1:37:B1:96:00:CC:CB:4F:32:5F:93:13:3A:86:FA:41:C4:8E:99:1B:9C
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
settle.link
*.settle.link
*.admin.settle.link
*.api.settle.link
*.app.settle.link
*.b750c5ca-80bc-4e22-b7f2-6acfdb1173ba.settle.link
*.cnjhqzvd.settle.link
*.cpyvfdtb.settle.link
*.demo.settle.link
*.dev.settle.link
*.ehskndcl.settle.link
*.elvcgjxb.settle.link
*.exdfnmiz.settle.link
*.ezvlncpr.settle.link
*.fnlvwzqm.settle.link
*.fxhmbnjp.settle.link
*.hostmaster.settle.link
*.ihywqzge.settle.link
*.jaghouye.settle.link
*.jbdgeqpa.settle.link
*.jgudwbcz.settle.link
*.keqxawfd.settle.link
*.klbipyjd.settle.link
*.kueomzkayehlq.settle.link
*.lfdemjoh.settle.link
*.lvyasjze.settle.link
*.lwfxvton.settle.link
*.mbpzvcok.settle.link
*.members.settle.link
*.mhotfcbx.settle.link
*.nmlsqxei.settle.link
*.nzhovbws.settle.link
*.pckloswf.settle.link
*.pgowqsvz.settle.link
*.qadbysjk.settle.link
*.qsrykedh.settle.link
*.qxemrbut.settle.link
*.qzahpogl.settle.link
*.salnywgd.settle.link
*.sldphrzg.settle.link
*.srjqpfec.settle.link
*.staging.settle.link
*.swzltknm.settle.link
*.test.settle.link
*.tmobile.settle.link
*.uat.settle.link
*.wjltiaoe.settle.link
*.wmxrbdnj.settle.link
*.wszbapgowqsvz.settle.link
*.wvpqltfe.settle.link
*.yerobifz.settle.link
*.03630843-df1f-47ba-8c0e-b1379679edf2.gogo77.my
*.06993ae4-dc85-4dd3-aab1-80219e445174.gogo77.my
*.14d262c0-4581-44bb-8124-40761e6ba665.gogo77.my
*.41049d2f-9103-432d-960e-fd963e48ad68.gogo77.my
*.47fd39bf-9793-4df6-a951-f3413c0da576.gogo77.my
*.533d9fe0-7b55-4834-98f2-2c969db3bbe8.gogo77.my
*.558e393d-4122-482a-9b9e-72429c29dd88.gogo77.my
*.679c9d5c-78fd-43ce-8caf-34dbf7c8fa0c.gogo77.my
*.83f5ecc0-cc7e-459e-b56d-b379882510d0.gogo77.my
*.84daf675-3aa7-42e1-baf7-eb964b3a513b.gogo77.my
*.98526ab7-2797-4bf8-bad8-9c40dd2a9c50.gogo77.my
*.a4f2f5d4-16b3-4227-b5aa-da1389804e74.gogo77.my
*.app.gogo77.my
*.bhjztwebmail.gogo77.my
*.c8116763-3a4e-4c12-bce6-3e9597f560b1.gogo77.my
*.demo.gogo77.my
*.df8e4eb4-36be-4336-b136-820829e0fe63.gogo77.my
*.ebmail.gogo77.my
gogo77.my
*.gogo77.my
*.hostmaster.gogo77.my
*.mail.gogo77.my
*.mtkmrapi.gogo77.my
*.test.gogo77.my
*.voqpuapi.gogo77.my
*.webmail.gogo77.my
*.www.gogo77.my
*.xgryfmtkmrapi.gogo77.my
*.akkros.podemus.com
*.arianrhod.podemus.com
*.frequenceovni.podemus.com
*.get.podemus.com
*.jipod.podemus.com
*.lesannees80.podemus.com
*.monsieurmain.podemus.com
*.podacim.podemus.com
podemus.com
*.podemus.com
Other domains in certificate