DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=baccoapalazzo.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 04, 2026
Valid Until
May 05, 2026 84 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
C8:6A:9F:8E:82:52:83:68:29:35:BF:BF:DC:12:1E:33:A6:38:76:C1:FB:2E:84:9D:50:E9:59:B5:C2:77:80:39
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
businesstycoon.org *.businesstycoon.org

Other domains in certificate

baccoapalazzo.com *.baccoapalazzo.com
bakedbagsofficialstore.com *.bakedbagsofficialstore.com
bakkthideyuig.cc *.bakkthideyuig.cc
balancecheck.it *.balancecheck.it
banda189.casino *.banda189.casino
bdt69gcr.com *.bdt69gcr.com
beachvacationparadise.live *.beachvacationparadise.live
beautyfor.it *.beautyfor.it
beisbol-report.com *.beisbol-report.com
beoir.it *.beoir.it
besandiego.com *.besandiego.com
best-foreign-investment.click *.best-foreign-investment.click
bestcuisine.it *.bestcuisine.it
bestlead.it *.bestlead.it
bet365s.co *.bet365s.co
betmgm.art *.betmgm.art
betowen.click *.betowen.click
betserido.vip *.betserido.vip
bgigri.com *.bgigri.com
bim5.xyz *.bim5.xyz
birolsunrisecadetschool.com *.birolsunrisecadetschool.com
bjtopy.com *.bjtopy.com
blackhairstyles.it *.blackhairstyles.it
blacklawhotline.com *.blacklawhotline.com
blissfulweddingsessence.beauty *.blissfulweddingsessence.beauty
blitzlocksmith.com *.blitzlocksmith.com
blockchaincircle.it *.blockchaincircle.it
brewstergaragedoors.com *.brewstergaragedoors.com
brianzolo.it *.brianzolo.it
bungeebabybouncer.com *.bungeebabybouncer.com
burlesquebabesshop.com *.burlesquebabesshop.com
butor.vip *.butor.vip
buyers.one *.buyers.one
buyin.it *.buyin.it
bynum.it *.bynum.it
c-mss.org *.c-mss.org
c93a2b7eb5fd7cc0.com *.c93a2b7eb5fd7cc0.com
ca27a1641f8b30b1.com *.ca27a1641f8b30b1.com
cakewalkreach.com *.cakewalkreach.com
callmeshannon.com *.callmeshannon.com
campinglarochade.com *.campinglarochade.com
cancerex.top *.cancerex.top
capdorad.com *.capdorad.com
bir.co.in *.bir.co.in