DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=hjfarms.pro
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
June 03, 2026
Valid Until
September 01, 2026 68 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CE:5B:2D:15:7F:3A:58:2D:BF:A9:44:D4:C9:13:84:4D:D5:E2:13:26:07:43:97:05:72:90:2C:DB:87:57:A3:3E
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
candyex.info *.candyex.info

Other domains in certificate

autodetailing.it *.autodetailing.it
blibliaquapark.com.au *.blibliaquapark.com.au *.ww38.blibliaquapark.com.au *.www.blibliaquapark.com.au
brigate.com *.brigate.com
distributorioro.com *.distributorioro.com
dolcitoscani.com *.dolcitoscani.com
doozos-dumplingsnoodles.com *.doozos-dumplingsnoodles.com *.ww17.doozos-dumplingsnoodles.com
environment.net.au *.environment.net.au
feminas.com *.feminas.com
finanziarie.co *.finanziarie.co
gasidrogeno.com *.gasidrogeno.com
getannie.com *.getannie.com
hjfarms.pro *.hjfarms.pro *.ww25.hjfarms.pro *.ww38.hjfarms.pro
holland-josenhans.de *.holland-josenhans.de *.www.holland-josenhans.de
hongkongcreditcard.com *.hongkongcreditcard.com
kavo.live *.kavo.live
lawypay.com *.lawypay.com *.secure.lawypay.com *.ww38.lawypay.com
lesimoonie.com *.lesimoonie.com
liquidazionetotale.com *.liquidazionetotale.com
myyo.pro *.myyo.pro
*.helixes-moony.northeasterner.com northeasterner.com *.northeasterner.com *.ww11.northeasterner.com
nukualofa.org *.nukualofa.org
pensilineombreggianti.com *.pensilineombreggianti.com
rateo.com *.rateo.com
realtoradvice.com *.realtoradvice.com
riela.com *.riela.com
risorsegrafiche.com *.risorsegrafiche.com
*.random.rockbank.au rockbank.au *.rockbank.au
*.random.rsvp.net.au rsvp.net.au *.rsvp.net.au *.ww38.rsvp.net.au
selectivecash.com *.selectivecash.com
serigrafare.com *.serigrafare.com
*.random.smartrisk.com smartrisk.com *.smartrisk.com
tastieravirtuale.com *.tastieravirtuale.com
tifiamo.com *.tifiamo.com
tokyodisneyresort.com *.tokyodisneyresort.com *.ww25.tokyodisneyresort.com
weddingdressmelbourne.com.au *.weddingdressmelbourne.com.au *.ww16.weddingdressmelbourne.com.au
zspanish.com *.zspanish.com