SSL Certificate Analysis for dev.charmtelecare.com - Security Grade & TLS Configuration

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=carnaval-brx.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 04, 2026

Valid Until

May 05, 2026 74 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

74:30:BD:14:81:9D:95:E3:A8:CC:1B:EF:7D:E0:E9:AA:9E:F4:BF:13:93:A6:B4:EB:94:4F:8F:67:E7:D9:F2:BC

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

charmtelecare.com *.charmtelecare.com

Other domains in certificate

carnaval-brx.com *.carnaval-brx.com

caromedlongevha.com *.caromedlongevha.com

casimojo.com *.casimojo.com

castleafricasafaris.com *.castleafricasafaris.com

cgjgmm.shop *.cgjgmm.shop

chaiyo268.co *.chaiyo268.co

chales.co *.chales.co

chaluvali.in *.chaluvali.in

chamkorea.com *.chamkorea.com

championfantasyplay.com *.championfantasyplay.com

changemanager.co *.changemanager.co

changhong658m.cc *.changhong658m.cc

changhong818f.cc *.changhong818f.cc

chaosbourne.com *.chaosbourne.com

chaoscrew3.com *.chaoscrew3.com

chaosnetworks.com *.chaosnetworks.com

chapter3.co *.chapter3.co

chargedup.it *.chargedup.it

chargenrg.com *.chargenrg.com

charger.one *.charger.one

chargeright.app *.chargeright.app

chargingstationreview.in *.chargingstationreview.in

chatsaver.org *.chatsaver.org

cheapusedcars.icu *.cheapusedcars.icu

choikclub.win *.choikclub.win

christian-health.com *.christian-health.com

ciaanmatch.com *.ciaanmatch.com

cialisorder.net *.cialisorder.net

cihangir.club *.cihangir.club

cimcf.org *.cimcf.org

cleanstoreapp.com *.cleanstoreapp.com

clearviewwindowwashing.com *.clearviewwindowwashing.com

cmssoftware477198.icu *.cmssoftware477198.icu

cnjmp.org *.cnjmp.org

cnsdled.vip *.cnsdled.vip

co-pilotai.com *.co-pilotai.com

coberline.com *.coberline.com

collaboratrice.it *.collaboratrice.it

collectcivilwar.com *.collectcivilwar.com

collectcountrymusic.com *.collectcountrymusic.com

collectfrench.com *.collectfrench.com

collectwars.com *.collectwars.com

comments-137631185.click *.comments-137631185.click

cgov.it.com *.cgov.it.com