SSL Certificate Analysis for dev.chinder.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=pubfood.com.au

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 10, 2026

Valid Until

May 11, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

7C:61:DD:89:DE:8D:8D:C5:9C:8B:5E:45:1D:A9:22:2B:3A:F4:49:83:63:4E:AE:2F:03:89:2D:AF:EB:E5:07:3A

Alternative Names

87 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

87 domains

chinder.com *.chinder.com *.api.chinder.com *.beta.chinder.com *.br.chinder.com *.comww25.chinder.com *.crm.chinder.com *.forum.chinder.com *.mail.chinder.com *.new.chinder.com *.test.chinder.com *.ww11.chinder.com *.ww25.chinder.com

Other domains in certificate

arymateya.pl *.arymateya.pl *.random.arymateya.pl *.ww17.arymateya.pl

*.25.b4c44.com b4c44.com *.b4c44.com *.comwww.b4c44.com *.ip13www.b4c44.com *.ipwww.b4c44.com *.iwww.b4c44.com *.ntalker.b4c44.com *.windows.b4c44.com *.ww24.b4c44.com *.ww25.b4c44.com *.www.b4c44.com

bnent.us *.bnent.us

farmguides.com *.farmguides.com *.remote.farmguides.com *.ww1.farmguides.com *.www.farmguides.com

handcraftedwithcare.com *.handcraftedwithcare.com

*.admin.phonesells.com phonesells.com *.phonesells.com

pubfood.com.au *.pubfood.com.au *.random.pubfood.com.au *.ww25.pubfood.com.au

*.hostmaster.rychlapozicka.com *.m.rychlapozicka.com rychlapozicka.com *.rychlapozicka.com *.vpn.rychlapozicka.com *.ww11.rychlapozicka.com

*.dev.scurelle.it scurelle.it *.scurelle.it

*.hostmaster.segurweb.com segurweb.com *.segurweb.com

*.dtt.sesongshu3.motorcycles *.kde.sesongshu3.motorcycles *.msu.sesongshu3.motorcycles sesongshu3.motorcycles *.sesongshu3.motorcycles

*.a65ba55e-f966-4152-94b0-b6b815eb167a.sonomafares.com *.argo.sonomafares.com *.cdn.sonomafares.com *.dev.sonomafares.com *.notexistsbackend.sonomafares.com *.notexistsdev.sonomafares.com sonomafares.com *.sonomafares.com *.superset.sonomafares.com

suiciders.com *.suiciders.com *.the.suiciders.com

*.stats.syotekeskus.com *.superset.syotekeskus.com syotekeskus.com *.syotekeskus.com *.visual.syotekeskus.com

*.api.thelendinghand.com *.dev.thelendinghand.com *.mail.thelendinghand.com *.sitemap.thelendinghand.com *.test.thelendinghand.com thelendinghand.com *.thelendinghand.com *.ww16.thelendinghand.com