Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=onlyteas.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 18, 2026
Valid Until
August 16, 2026
69 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:E5:9B:D7:93:76:C4:14:66:EA:DC:BC:11:84:C6:C3:B1:12:FA:96:9E:39:73:63:A2:C2:11:C6:2A:61:E7:99
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
1fnb.com
*.1fnb.com
*.d.1fnb.com
*.dev.1fnb.com
*.dlab.1fnb.com
*.email.1fnb.com
*.itp.1fnb.com
*.media.1fnb.com
*.ofertas-trabajo.1fnb.com
*.professional.1fnb.com
*.psb-stg.1fnb.com
*.psb.1fnb.com
*.r53.1fnb.com
*.store.1fnb.com
*.trabajo.1fnb.com
ceviriburosu.com
*.ceviriburosu.com
*.admin.dipartimenti.it
*.api.dipartimenti.it
*.demo.dipartimenti.it
*.dev.dipartimenti.it
dipartimenti.it
*.dipartimenti.it
*.hostmaster.dipartimenti.it
*.intelligence.dipartimenti.it
*.local.dipartimenti.it
*.superset.dipartimenti.it
hugendubeloffers.com
*.hugendubeloffers.com
*.autodiscover.mytruck.be
*.chart.mytruck.be
*.comm8-47e5-a8b5-4b6ca426bab7.mytruck.be
*.dash.mytruck.be
*.dashboard.mytruck.be
*.dev.mytruck.be
*.email.mytruck.be
*.emv1.mytruck.be
*.eqqkqowa.mytruck.be
*.hostmaster.mytruck.be
*.imap.mytruck.be
mytruck.be
*.mytruck.be
*.notexistsoud.mytruck.be
*.oud.mytruck.be
*.owa.mytruck.be
*.reporting.mytruck.be
*.reports.mytruck.be
*.stock.mytruck.be
*.superset.mytruck.be
*.supersets.mytruck.be
*.voorraad.mytruck.be
*.webmail.mytruck.be
*.www.mytruck.be
*.2131e7c5-5c0a-4071-9bb3-a0d17343e5f6.onlyteas.co.uk
*.6a57c999-7f5c-4ac5-a049-b3128dba1823.onlyteas.co.uk
*.70b8d0a4-6bfc-40bf-a61d-c341febeedc1.onlyteas.co.uk
*.76b11137-5fc5-4202-a4a2-c1ea6b00b24c.onlyteas.co.uk
*.admin.onlyteas.co.uk
*.anyconnect.onlyteas.co.uk
*.api.onlyteas.co.uk
*.app.onlyteas.co.uk
*.backup.onlyteas.co.uk
*.bi.onlyteas.co.uk
*.cpsqpsuperset.onlyteas.co.uk
*.dashboard.onlyteas.co.uk
*.dashboards.onlyteas.co.uk
*.data.onlyteas.co.uk
*.demo.onlyteas.co.uk
*.dev.onlyteas.co.uk
*.feaqodashboards.onlyteas.co.uk
*.forecast.onlyteas.co.uk
*.intel.onlyteas.co.uk
*.mail.onlyteas.co.uk
*.metrics.onlyteas.co.uk
*.mta-sts.onlyteas.co.uk
*.ncwcvcpsqpsuperset.onlyteas.co.uk
*.new.onlyteas.co.uk
onlyteas.co.uk
*.onlyteas.co.uk
*.report.onlyteas.co.uk
*.reporting.onlyteas.co.uk
*.staging.onlyteas.co.uk
*.stats.onlyteas.co.uk
*.su.onlyteas.co.uk
*.superset.onlyteas.co.uk
*.uat.onlyteas.co.uk
*.visual.onlyteas.co.uk
*.webmail.onlyteas.co.uk
*.www.onlyteas.co.uk
*.yrdhqvmmpqsuperset.onlyteas.co.uk
Other domains in certificate