Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=saveourmesa.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
May 21, 2026
Valid Until
August 19, 2026
84 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B8:8D:24:09:40:48:42:5B:3D:4D:DA:E3:6F:A0:A6:59:67:99:8D:08:C6:66:DA:ED:F1:10:49:13:7C:72:C6:57
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
diytek.com
*.diytek.com
*.hostmaster.diytek.com
*.intelligence.diytek.com
*.mta-sts.diytek.com
*.sitemap.diytek.com
*.sitemaps.diytek.com
badsmell.org
*.badsmell.org
*.m.badsmell.org
*.wwww.badsmell.org
*.app.f95zone.blog
*.backup.f95zone.blog
*.beta.f95zone.blog
*.extranet.f95zone.blog
f95zone.blog
*.f95zone.blog
*.glcdqhre.f95zone.blog
*.help.f95zone.blog
*.lhufbsyvqndev.f95zone.blog
*.ltvopsyvqndev.f95zone.blog
*.mailer.f95zone.blog
*.members.f95zone.blog
*.secure.f95zone.blog
*.staging.f95zone.blog
*.uat.f95zone.blog
*.wp.f95zone.blog
*.www.f95zone.blog
*.api.hz-fs.art
*.app.hz-fs.art
hz-fs.art
*.hz-fs.art
mu08q8.co
*.mu08q8.co
*.us49019cmdmpin.mu08q8.co
*.us49019dcon.mu08q8.co
*.us49019dxiw.mu08q8.co
*.us49019erka.mu08q8.co
*.us49019fpxrqom.mu08q8.co
*.us49019fuznkus.mu08q8.co
*.us49019iidk.mu08q8.co
*.us49019ojx.mu08q8.co
*.us49019qgg.mu08q8.co
*.us49019qvljtnn.mu08q8.co
*.us49019sgga.mu08q8.co
*.us49019tnz.mu08q8.co
*.us49019vvfq.mu08q8.co
*.0mmnnp.poxflash.com
poxflash.com
*.poxflash.com
*.app.saveourmesa.org
*.archive.saveourmesa.org
*.help.saveourmesa.org
*.hostmaster.saveourmesa.org
*.mx.saveourmesa.org
*.remote.saveourmesa.org
saveourmesa.org
*.saveourmesa.org
*.share.saveourmesa.org
*.sitemap.saveourmesa.org
*.vpn.saveourmesa.org
*.www.saveourmesa.org
torrentz2.cfd
*.torrentz2.cfd
*.uat.torrentz2.cfd
*.akfoa6.wings138vip.art
*.app.wings138vip.art
*.dev.wings138vip.art
wings138vip.art
*.wings138vip.art
*.alpha.xn--1kqx09a05czu3d.com
*.demo.xn--1kqx09a05czu3d.com
*.dev.xn--1kqx09a05czu3d.com
*.office.xn--1kqx09a05czu3d.com
*.shop.xn--1kqx09a05czu3d.com
*.sitemap.xn--1kqx09a05czu3d.com
xn--1kqx09a05czu3d.com
*.xn--1kqx09a05czu3d.com
*.cloud.xn--hxtx28abre.com
*.krasnodar.xn--hxtx28abre.com
*.rd.xn--hxtx28abre.com
*.rds.xn--hxtx28abre.com
*.rdweb.xn--hxtx28abre.com
*.remote.xn--hxtx28abre.com
*.secondary.xn--hxtx28abre.com
*.wildcard.xn--hxtx28abre.com
*.www.xn--hxtx28abre.com
xn--hxtx28abre.com
*.xn--hxtx28abre.com
Other domains in certificate