DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt

Certificate Information

Subject
CN=commune.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 13, 2026
Valid Until
May 14, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
37:26:D9:B9:FE:96:F2:2F:60:A0:1D:AF:52:7D:A2:7D:AA:37:46:F1:BD:41:A9:EE:6C:7E:38:94:09:AE:8F:CC
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
cofin.it *.cofin.it

Other domains in certificate

*.anyconnect.asarh.com *.api.asarh.com asarh.com *.asarh.com *.client.asarh.com *.dxoqjurc.asarh.com *.eqykwopitg.asarh.com *.gateway.asarh.com *.ipachweb.asarh.com *.login.asarh.com *.m.asarh.com *.mobileconnect.asarh.com *.obqgcjwu.asarh.com *.portal.asarh.com *.remote1.asarh.com *.ssl.asarh.com *.sslvpn.asarh.com *.veshdabp.asarh.com *.vpn.asarh.com *.vpn1.asarh.com *.vpnssl.asarh.com *.web.asarh.com *.web2.asarh.com *.yandex-staff.asarh.com
*.182f8a0a-7f94-4ec0-9ed4-7c178210db1e.casibomresmiadres.net *.aniqmail.casibomresmiadres.net *.app.casibomresmiadres.net casibomresmiadres.net *.casibomresmiadres.net *.cpcalendars.casibomresmiadres.net *.cpcontacts.casibomresmiadres.net *.data.casibomresmiadres.net *.ed8c5fe1-a5b0-4be8-8a12-0391e3db9ba5.casibomresmiadres.net *.email.casibomresmiadres.net *.f6ede106-7c58-44cb-b63b-b51b8ec752ff.casibomresmiadres.net *.rds.casibomresmiadres.net *.vfibeemail.casibomresmiadres.net *.webdisk.casibomresmiadres.net *.webmail.casibomresmiadres.net *.www.casibomresmiadres.net
comborangers.com *.comborangers.com
commune.it *.commune.it
conducts.it *.conducts.it
consulentedelrisparmio.it *.consulentedelrisparmio.it
corporateventure.it *.corporateventure.it
crunching.it *.crunching.it
decuplo.it *.decuplo.it
dendo.it *.dendo.it
dentalmarket.it *.dentalmarket.it
dfhkxchgxdu.cc *.dfhkxchgxdu.cc
digitalmedialab.it *.digitalmedialab.it
dioro.it *.dioro.it
*.8af655fb-507a-4a55-bdca-832eddc79073.invokeyourpotential.com *.admin.invokeyourpotential.com *.api.invokeyourpotential.com *.cloud.invokeyourpotential.com *.demo.invokeyourpotential.com *.dev.invokeyourpotential.com *.fuavytbngptest.invokeyourpotential.com invokeyourpotential.com *.invokeyourpotential.com *.kb.invokeyourpotential.com *.members.invokeyourpotential.com *.nieuw.invokeyourpotential.com *.rd.invokeyourpotential.com *.rds.invokeyourpotential.com *.staging.invokeyourpotential.com *.tbngptest.invokeyourpotential.com *.test.invokeyourpotential.com *.vpn.invokeyourpotential.com
*.mx.penombra.it penombra.it *.penombra.it *.rds.penombra.it *.smtp-auth.penombra.it