DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=hernutrition.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 06, 2026
Valid Until
May 07, 2026 88 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
D0:EE:92:96:0D:4E:E8:FE:C6:A8:4E:65:9D:A0:01:16:5B:AC:73:C1:ED:07:10:1B:E3:78:14:2C:10:B6:9C:2B
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
grumpygrouper.com *.grumpygrouper.com *.access.grumpygrouper.com *.anyconnect.grumpygrouper.com *.app.grumpygrouper.com *.auth.grumpygrouper.com *.autoconfig.grumpygrouper.com *.cisco.grumpygrouper.com *.ciscovpn.grumpygrouper.com *.citrix.grumpygrouper.com *.cloud.grumpygrouper.com *.cpanel.grumpygrouper.com *.drvpn.grumpygrouper.com *.email.grumpygrouper.com *.fax.grumpygrouper.com *.gateway.grumpygrouper.com *.gp.grumpygrouper.com *.imap.grumpygrouper.com *.labvirtual.grumpygrouper.com *.m.grumpygrouper.com *.mail.grumpygrouper.com *.online.grumpygrouper.com *.prelogon.grumpygrouper.com *.ra.grumpygrouper.com *.ravpn.grumpygrouper.com *.rd.grumpygrouper.com *.rdp.grumpygrouper.com *.receiver.grumpygrouper.com *.remoteapp.grumpygrouper.com *.secureaccess.grumpygrouper.com *.smtp.grumpygrouper.com *.sslvpn.grumpygrouper.com *.virtualapps.grumpygrouper.com *.vpn.grumpygrouper.com *.vpnssl.grumpygrouper.com *.webdisk.grumpygrouper.com *.webmail.grumpygrouper.com *.workspace.grumpygrouper.com *.www.grumpygrouper.com

Other domains in certificate

*.069b04f2-0387-4e40-993a-ef08ca93fd39.56542.locker 56542.locker *.56542.locker *.cxpriadmin.56542.locker *.hostmaster.56542.locker *.hr.56542.locker *.new.56542.locker *.payt.56542.locker *.portal.56542.locker *.preprod.56542.locker *.share.56542.locker *.xpjdxexternal.56542.locker
*.app.golfodeamerica.org *.ftp.golfodeamerica.org golfodeamerica.org *.golfodeamerica.org *.nfywgcpanel.golfodeamerica.org *.www.golfodeamerica.org
gracefulbull.com *.gracefulbull.com *.www.gracefulbull.com
*.cdn.hernutrition.com *.demo.hernutrition.com *.help.hernutrition.com hernutrition.com *.hernutrition.com *.hostmaster.hernutrition.com *.ww17.hernutrition.com *.ww25.hernutrition.com *.www.hernutrition.com *.xh.hernutrition.com
*.h.hg-hf.com hg-hf.com *.hg-hf.com *.m.hg-hf.com *.nic.hg-hf.com *.w.hg-hf.com *.zgyy.hg-hf.com
*.dashboard.mayanpool.com *.dqyww.mayanpool.com *.gonghe.mayanpool.com *.gvpfi.mayanpool.com *.jrbc.mayanpool.com *.ju.mayanpool.com mayanpool.com *.mayanpool.com *.shoqo.mayanpool.com *.tnlkzciscovpn.mayanpool.com *.xvaf.mayanpool.com *.yjakeorxxtmkymmfyboqykzqf.mayanpool.com *.yowfgoffice.mayanpool.com