SSL Certificate Analysis for cea-how.org - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=sjbbftj.info

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 08, 2026

Valid Until

April 08, 2026 55 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

39:0B:00:ED:3D:B0:D3:2A:26:AB:95:CD:55:DB:38:C1:41:94:B2:7E:A7:AA:A5:0C:CB:3A:B4:E7:62:0B:2E:F3

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

cea-how.org *.cea-how.org *.ww25.cea-how.org

Other domains in certificate

*.analysis-ops.cinemaseries.com *.analytic2.cinemaseries.com *.bi2.cinemaseries.com cinemaseries.com *.cinemaseries.com *.email.cinemaseries.com *.ml-failover.cinemaseries.com *.plan-vis.cinemaseries.com *.set.cinemaseries.com *.slave-trends.cinemaseries.com *.superset1.cinemaseries.com *.webmail.cinemaseries.com *.ww25.cinemaseries.com

fireporntube.pro *.fireporntube.pro *.m.fireporntube.pro *.sex.fireporntube.pro

frogger.au *.frogger.au *.ww25.frogger.au *.ww38.frogger.au

garma.au *.garma.au

hospitalinsurance.com.au *.hospitalinsurance.com.au

*.dyazbhmr.istanbullotus.xyz istanbullotus.xyz *.istanbullotus.xyz

javdb528.com *.javdb528.com *.ww38.javdb528.com

joinmyquicz.com *.joinmyquicz.com *.ww25.joinmyquicz.com

labelstables.com *.labelstables.com *.random.labelstables.com *.ww16.labelstables.com

maxwobble.com *.maxwobble.com

*.beta.olivegarfen.com *.flow.olivegarfen.com olivegarfen.com *.olivegarfen.com *.random.olivegarfen.com *.secure.olivegarfen.com *.ww.olivegarfen.com *.ww17.olivegarfen.com

*.members.petscentrix.com petscentrix.com *.petscentrix.com

rdr2map.eu *.rdr2map.eu

sjbbftj.info *.sjbbftj.info *.ww25.sjbbftj.info *.xinzhou.sjbbftj.info

*.sitemaps.techsupreme.store techsupreme.store *.techsupreme.store *.www.techsupreme.store

*.charan.teju.world teju.world *.teju.world

*.backend.trexjumpgames.site *.demo.trexjumpgames.site *.dev.trexjumpgames.site *.superset.trexjumpgames.site trexjumpgames.site *.trexjumpgames.site *.ww25.trexjumpgames.site

vodafonetv.es *.vodafonetv.es *.ww.vodafonetv.es *.ww25.vodafonetv.es *.ww38.vodafonetv.es

*.bi.wigitboutique.com *.en.wigitboutique.com *.k3edmpdfbneamc6z.wigitboutique.com *.m.wigitboutique.com *.mw1nfg0m3eqwwwrz.wigitboutique.com *.securemail.wigitboutique.com *.sitemaps.wigitboutique.com wigitboutique.com *.wigitboutique.com *.ww7.wigitboutique.com