SSL Certificate Analysis for dev.luxuriousbeing.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=leanscalesurge.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 06, 2026

Valid Until

May 07, 2026 74 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

88:0A:5A:4F:E8:2C:86:D0:A1:9B:29:0A:22:BE:0C:CA:08:6F:43:61:41:71:A7:61:D9:8A:98:82:49:1A:ED:9F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

luxuriousbeing.com *.luxuriousbeing.com

Other domains in certificate

malayali.co.in *.malayali.co.in

leanscalesurge.com *.leanscalesurge.com

lemacchine.it *.lemacchine.it

leo88.mov *.leo88.mov

lesliesbakery.com *.lesliesbakery.com

lightbit.com *.lightbit.com

linkktokyo77.online *.linkktokyo77.online

liquidpromo.com *.liquidpromo.com

livaraimmo.com *.livaraimmo.com

lnwo719.org *.lnwo719.org

local17.com *.local17.com

localpubs.it *.localpubs.it

londondryrecords.com *.londondryrecords.com

londonuniversity.online *.londonuniversity.online

lotusagency.love *.lotusagency.love

lovebilibili.com *.lovebilibili.com

lowenergy.it *.lowenergy.it

lulas.love *.lulas.love

luxury-custom-740736997.click *.luxury-custom-740736997.click

lviv.mobi *.lviv.mobi

lybev.bid *.lybev.bid

lyricaltyagaraja.com *.lyricaltyagaraja.com

lzylp.cc *.lzylp.cc

macca-l.net *.macca-l.net

machagissl.com *.machagissl.com

machsecurity.io *.machsecurity.io

maioralrestaurante.com *.maioralrestaurante.com

maitreyaboys.chat *.maitreyaboys.chat

mallutvserial.online *.mallutvserial.online

mamlk.bid *.mamlk.bid

mammogramai.com *.mammogramai.com

mangascan.live *.mangascan.live

mangomojitomocktail.com *.mangomojitomocktail.com

marineinvestments.com *.marineinvestments.com

marosha.com *.marosha.com

marquescontracting.com *.marquescontracting.com

masukcepat.online *.masukcepat.online

maxusglobal.es *.maxusglobal.es

mba-course-88.click *.mba-course-88.click

mbc-bundle.com *.mbc-bundle.com

media-and-services.cc *.media-and-services.cc

mediamaxnetworkservicesaccess.com *.mediamaxnetworkservicesaccess.com

meetlemonlighthub.com *.meetlemonlighthub.com

meetlemonlightlabs.com *.meetlemonlightlabs.com