Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=9minute.life
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 26, 2026
Valid Until
August 24, 2026
73 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FB:B7:14:A8:C9:95:7E:6F:D7:70:67:31:93:57:AD:56:01:32:25:E6:52:8E:AE:98:25:1A:1C:4D:12:EE:B5:00
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ddea.net
*.ddea.net
*.admin.ddea.net
*.forecast.ddea.net
*.huaxiaojun878.ddea.net
*.notexistsdev.ddea.net
*.notexistsstaging.ddea.net
*.remoteaccess.ddea.net
*.secureaccess.ddea.net
9minute.life
*.9minute.life
*.api.9minute.life
*.assets.9minute.life
*.backup.9minute.life
*.blog.9minute.life
*.dashboard.9minute.life
*.hr.9minute.life
*.hwyyiv1.9minute.life
*.mail.9minute.life
*.mailer.9minute.life
*.my.9minute.life
*.new.9minute.life
*.notexistshostmaster.9minute.life
*.qa.9minute.life
*.staging.9minute.life
*.stg.9minute.life
*.uyhaewp.9minute.life
*.v1.9minute.life
*.wp.9minute.life
bedsecrets.com
*.bedsecrets.com
*.cdn.bedsecrets.com
*.link.bedsecrets.com
*.m.bedsecrets.com
cabridgelms.org
*.cabridgelms.org
*.ww16.cabridgelms.org
*.ww25.cabridgelms.org
*.ww38.cabridgelms.org
childcaresandiego.org
*.childcaresandiego.org
*.random.childcaresandiego.org
*.ww1.childcaresandiego.org
drs.site
*.drs.site
*.ww38.drs.site
*.ww43.drs.site
farzandanebartar.org
*.farzandanebartar.org
*.www.farzandanebartar.org
hartlandecsi.net
*.hartlandecsi.net
*.ww38.hartlandecsi.net
*.hostmaster.italiener.it
italiener.it
*.italiener.it
*.remote.italiener.it
*.www.italiener.it
monespaceceeres.com
*.monespaceceeres.com
*.wildcard.monespaceceeres.com
*.ww16.monespaceceeres.com
namthangcomputer.com
*.namthangcomputer.com
*.ww25.namthangcomputer.com
*.image.novamilfs.com
novamilfs.com
*.novamilfs.com
*.ww16.novamilfs.com
*.ww25.novamilfs.com
oususkinner.com
*.oususkinner.com
*.ww16.oususkinner.com
*.jenkins.perfectgilrs.net
*.m.perfectgilrs.net
perfectgilrs.net
*.perfectgilrs.net
*.ww16.perfectgilrs.net
*.crm.porchvault.net
*.panel.porchvault.net
porchvault.net
*.porchvault.net
*.ww25.porchvault.net
*.language.radiussix.com
radiussix.com
*.radiussix.com
*.0b2f9cf8-072d-4337-aeb9-1a51aea516e8.tattootraining.art
*.app.tattootraining.art
tattootraining.art
*.tattootraining.art
Other domains in certificate