SSL Certificate Analysis for ediable.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=tlp.au

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 10, 2026

Valid Until

September 08, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

86:87:47:8D:4F:35:F6:4C:A4:06:A0:A5:9B:72:8D:86:43:C4:91:80:6F:DE:BB:41:02:A1:EA:90:D2:1A:A5:3F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

ediable.com *.ediable.com *.ww38.ediable.com

Other domains in certificate

carlton.com.au *.carlton.com.au *.makemarkwebmail.carlton.com.au *.root.carlton.com.au *.ww25.carlton.com.au

emprestamos.com.br *.emprestamos.com.br

*.0ereph.gaadm.com *.0q.gaadm.com *.12zegb.gaadm.com *.4uom6f.gaadm.com *.4w.gaadm.com *.5wgofg.gaadm.com *.6sfsit.gaadm.com *.8kclti.gaadm.com *.8p.gaadm.com *.9lmqkr.gaadm.com *.afkdsh.gaadm.com *.b4rko8.gaadm.com *.bh6z8i.gaadm.com *.d6f.gaadm.com *.drqnpn.gaadm.com *.email.gaadm.com *.epjydu.gaadm.com *.ey4.gaadm.com *.fafph2.gaadm.com *.fmal3t.gaadm.com gaadm.com *.gaadm.com *.gpcww4.gaadm.com *.ilphba.gaadm.com *.iy9a88.gaadm.com *.j4e4bd.gaadm.com *.kr.gaadm.com *.llhqyj.gaadm.com *.lonzk5.gaadm.com *.m.gaadm.com *.mb8g5j.gaadm.com *.mhlipg.gaadm.com *.mmq.gaadm.com *.mrk.gaadm.com *.nbazhi.gaadm.com *.nf0r6k.gaadm.com *.oedkcb.gaadm.com *.osq48k.gaadm.com *.px.gaadm.com *.ra.gaadm.com *.syu.gaadm.com *.tpqcok.gaadm.com *.tqesay.gaadm.com *.uh.gaadm.com *.umrexi.gaadm.com *.uwo.gaadm.com *.wafaij.gaadm.com *.www.gaadm.com *.xfxxvf.gaadm.com *.xp183q.gaadm.com *.yioyhl.gaadm.com *.yvqa4s.gaadm.com *.yx1k01.gaadm.com *.zs5z5s.gaadm.com

identi.au *.identi.au *.random.identi.au *.wildcard.identi.au

line-eap.com *.line-eap.com *.random.line-eap.com *.ww16.line-eap.com *.ww25.line-eap.com *.ww38.line-eap.com

marlinsnewballpark.com *.marlinsnewballpark.com *.uk.marlinsnewballpark.com

oppsplace.com *.oppsplace.com *.www.oppsplace.com

*.jenkins.paxful.co paxful.co *.paxful.co

*.dk.tlp.au *.mn.tlp.au tlp.au *.tlp.au

*.sc.votenooncc.com votenooncc.com *.votenooncc.com