DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=gartis.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 07, 2026
Valid Until
May 08, 2026 86 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
1B:BA:B6:D1:4F:F9:FF:36:B2:71:5E:19:CB:F5:5D:71:30:96:B0:CA:E7:D4:25:4C:43:66:50:DE:A2:0B:A3:0B
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
gartis.com *.gartis.com *.beta.gartis.com *.dev.gartis.com *.hostmaster.gartis.com *.mail.gartis.com *.test.gartis.com *.ww1.gartis.com *.ww38.gartis.com

Other domains in certificate

4vui.com *.4vui.com *.ww16.4vui.com *.ww38.4vui.com
8filmyzilla.org *.8filmyzilla.org *.app.8filmyzilla.org *.external.8filmyzilla.org
balenceit.com *.balenceit.com
biologische.com *.biologische.com *.gitlab.biologische.com *.report.biologische.com *.siglopedia.biologische.com *.superset-std.biologische.com
bpm-forum.org *.bpm-forum.org *.webdisk.bpm-forum.org
chinaqiuhao.com *.chinaqiuhao.com
edgeniity.com *.edgeniity.com *.hostmaster.edgeniity.com *.learn.edgeniity.com *.media.edgeniity.com *.sislogin.edgeniity.com
*.byjflofbhhapi.fakephonepe.pro fakephonepe.pro *.fakephonepe.pro *.gjoelportal.fakephonepe.pro
hg31z.top *.hg31z.top *.qpuov.hg31z.top
*.backup.jeffsgeometro.com jeffsgeometro.com *.jeffsgeometro.com *.random.jeffsgeometro.com
makemytripplan.com *.makemytripplan.com
marketplace-xh.com *.marketplace-xh.com
*.dev.medinahbaptist.org *.jubileebible-org.medinahbaptist.org *.mbcministry.medinahbaptist.org medinahbaptist.org *.medinahbaptist.org *.ww38.medinahbaptist.org
neemhairoil.com *.neemhairoil.com
neurocentrum.com *.neurocentrum.com
new8812.kim *.new8812.kim
newsreaderdigital.com *.newsreaderdigital.com
newyork888game.com *.newyork888game.com
*.career.olivier.com.au *.ci.olivier.com.au olivier.com.au *.olivier.com.au *.ww38.olivier.com.au
*.admin.omene.com *.api.omene.com *.blog.omene.com *.cloud.omene.com *.demo.omene.com *.hostmaster.omene.com *.m.omene.com omene.com *.omene.com *.rdp.omene.com *.rds.omene.com *.rds1.omene.com *.rdweb.omene.com *.recette.omene.com *.ts.omene.com *.vpn.omene.com *.ww1.omene.com *.ww38.omene.com