DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=dalat.life
Issuer
C=US, O=Let's Encrypt, CN=YR1
Valid From
May 29, 2026
Valid Until
August 27, 2026 68 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
55:5C:E0:11:5C:EE:AC:39:70:0A:FC:E1:EF:3A:89:BF:A7:57:5F:78:18:9C:88:C0:E4:81:1B:C3:B9:19:E1:42
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
dfk.in *.dfk.in *.hostmaster.dfk.in *.in.dfk.in *.m.dfk.in *.primary.dfk.in *.www.dfk.in

Other domains in certificate

abhinava.com *.abhinava.com
autobond.com.au *.autobond.com.au
betwin-parimatchh.com *.betwin-parimatchh.com
biometricdiagnostics.com *.biometricdiagnostics.com *.ww25.biometricdiagnostics.com
blowtorch.com.au *.blowtorch.com.au *.mail.blowtorch.com.au
cityexchange.qa *.cityexchange.qa *.hostmaster.cityexchange.qa *.mail.cityexchange.qa *.ns1.cityexchange.qa *.ns2.cityexchange.qa *.random.cityexchange.qa *.ww25.cityexchange.qa *.www.cityexchange.qa
connaughtscaffolding.com *.connaughtscaffolding.com *.ww38.connaughtscaffolding.com
dalat.life *.dalat.life
fchl.au *.fchl.au *.insight.fchl.au
gohdr.com *.gohdr.com *.ww16.gohdr.com *.ww38.gohdr.com
happyfeet.com.au *.happyfeet.com.au *.preprod.happyfeet.com.au *.ww38.happyfeet.com.au *.www.happyfeet.com.au
lendinggtree.com *.lendinggtree.com *.shop.lendinggtree.com *.store.lendinggtree.com *.temp.lendinggtree.com *.wildcard.lendinggtree.com *.ww11.lendinggtree.com *.ww16.lendinggtree.com *.ww25.lendinggtree.com *.ww35.lendinggtree.com *.ww38.lendinggtree.com *.www.lendinggtree.com
lewdof.com *.lewdof.com *.random.lewdof.com *.ww16.lewdof.com *.ww38.lewdof.com
motortrader.au *.motortrader.au
mybarbecue.com *.mybarbecue.com *.ww25.mybarbecue.com
*.hostmaster.myharitagedna.com myharitagedna.com *.myharitagedna.com
oberlink.nl *.oberlink.nl *.ww38.oberlink.nl
ravizzabrownfield.com *.ravizzabrownfield.com *.ww16.ravizzabrownfield.com *.www.ravizzabrownfield.com
reddid.com *.reddid.com
sgg.au *.sgg.au *.ww38.sgg.au
testskeger.de *.testskeger.de *.ww38.testskeger.de
thrillingvideos.com *.thrillingvideos.com
*.mailgw.tinafromtiktok.info tinafromtiktok.info *.tinafromtiktok.info