SSL Certificate Analysis for cloud.ma69.cfd - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ma69.cfd

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 02, 2026

Valid Until

July 31, 2026 86 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

8B:F7:F2:61:6C:20:9A:4C:44:8D:EF:D5:1A:E0:C0:F7:36:35:22:9C:A2:B0:A5:AC:45:EE:F0:7C:BA:7D:C6:CD

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

ma69.cfd *.ma69.cfd *.cloud.ma69.cfd *.sitemaps.ma69.cfd *.u46cv.ma69.cfd

Other domains in certificate

*.a.a2adir.com a2adir.com *.a2adir.com *.admin.a2adir.com *.api.a2adir.com *.apps.a2adir.com *.assets.a2adir.com *.b9ae71e2-72c6-4f16-8cab-de08d4109036.a2adir.com *.barracuda.a2adir.com *.bitbucket.a2adir.com *.bjsqzen.a2adir.com *.cloud.a2adir.com *.cms.a2adir.com *.cpcalendars.a2adir.com *.demo.a2adir.com *.dev.a2adir.com *.development.a2adir.com *.ec06e3d9-fed4-4f11-893f-299fe09bd52e.a2adir.com *.en.a2adir.com *.files.a2adir.com *.game.a2adir.com *.kqmnimx3.a2adir.com *.link.a2adir.com *.m.a2adir.com *.mailgw.a2adir.com *.mailin1.a2adir.com *.mx0.a2adir.com *.mx3.a2adir.com *.mx7.a2adir.com *.ns.a2adir.com *.pay.a2adir.com *.poczta.a2adir.com *.pop.a2adir.com *.portal.a2adir.com *.rd.a2adir.com *.rds.a2adir.com *.rdweb.a2adir.com *.remote.a2adir.com *.rtegegwlqiportal.a2adir.com *.server.a2adir.com *.server1.a2adir.com *.share.a2adir.com *.sharepoint.a2adir.com *.staging.a2adir.com *.test.a2adir.com *.vpn.a2adir.com *.web.a2adir.com *.webmail.a2adir.com *.wtlyjmanager.a2adir.com *.ww6.a2adir.com *.www6.a2adir.com

admin-mx.com *.admin-mx.com *.weixin.admin-mx.com

*.api.blockchaincodesolution.pro blockchaincodesolution.pro *.blockchaincodesolution.pro *.sitemaps.blockchaincodesolution.pro

*.campanha.namearchives.com *.hostmaster.namearchives.com namearchives.com *.namearchives.com *.vpn.namearchives.com

*.admin.protectionmadesimple.com *.dev.protectionmadesimple.com *.m.protectionmadesimple.com protectionmadesimple.com *.protectionmadesimple.com *.staging.protectionmadesimple.com *.www.protectionmadesimple.com

*.m.tp183.com *.tp.tp183.com tp183.com *.tp183.com *.www.tp183.com *.wwww.tp183.com

*.app.xn--klro46h.com *.demo.xn--klro46h.com *.hostmaster.xn--klro46h.com *.its.xn--klro46h.com *.staging.xn--klro46h.com *.www.xn--klro46h.com xn--klro46h.com *.xn--klro46h.com