Open
Cached
·
just now
87/100
SECURITY SCORE
Certificate Information
Subject
C=DE, L=Mülheim an der Ruhr, O=ALDI International Services SE & Co. oHG, CN=karriere.hofer.at
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
Valid From
October 20, 2025
Valid Until
October 19, 2026
257 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
CC:0C:5F:C0:9C:79:F7:FE:5A:61:F6:54:63:D9:B4:4D:0D:FE:AA:0E:7B:CD:B4:35:9C:C1:0B:B8:7A:45:E5:F6
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=63072000; includeSubdomains;
Content-Security-Policy
Basic
script-src; object-src; connect-src; +5 more
script-src 'self' 'unsafe-inline' 'unsafe-eval' assets.adobedtm.com *.salesforceliveagent.com service.force.com *.my.salesforce.com *.google.com *.facebook.net *.facebook.com *.omtrdc.net *.youtube.com *.ytimg.com *.doubleclick.net *.googleapis.com *.iesnare.com appleid.cdn-apple.com www.googletagmanager.com www.googleadservices.com activitymap.adobe.com qasfix-hofer.cs101.force.com cs101.salesforce.com https://www.googletagmanager.com/gtag/js *.bing.com https://s.pinimg.com/ct/core.js https://s.pinimg.com/ct/lib/main.2a04f3ee.js hofer.force.com hofer.secure.force.com static.lightning.force.com js-cdn.dynatrace.com int-crm.my.salesforce.com EU17.salesforce.com EU17.force.com EU36.salesforce.com EU36.force.com secure.force.com *.cookielaw.org *.onetrust.com *.salesforce-sites.com s7g10.scene7.com collect.tealiumiq.com tags.tiqcdn.com *.googlesyndication.com https://rum.hlx.page *.mapbox.com https://locator.uberall.com; object-src 'none'; connect-src 'self' *.omtrdc.net *.demdex.net *.postcodeanywhere.co.uk *.facebook.com activitymap.adobe.com sitecatalyst.omniture.com qasfix-hofer.cs101.force.com cs101.salesforce.com hofer.force.com hofer.secure.force.com c.la1-c1-fra.salesforceliveagent.com EU17.salesforce.com d.la1-c1-fra.salesforceliveagent.com www.zurueckzumursprung.at https://storefinder.aldi.at https://empty-fridge-widget.vercel.app https://gewinnspiel.aldi-sued.de test.storefinder.aldi.at https://bf51204epo.bf.dynatrace.com/bf int-crm.my.salesforce.com eu36.salesforce.com EU17.force.com EU36.force.com static.lightning.force.com secure.force.com service.force.com *.salesforceliveagent.com *.googleapis.com *.cookielaw.org *.onetrust.com *.salesforce-sites.com s7g10.scene7.com collect.tealiumiq.com *.doubleclick.net *.googlesyndication.com *.google.com api.friendlycaptcha.com eu-api.friendlycaptcha.eu bat.bing.com bat.bing.net *.googleadservices.com https://rum.hlx.page *.mapbox.com https://locator.uberall.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.omtrdc.net *.my.salesforce.com service.force.com qasfix-hofer.cs101.force.com cs101.salesforce.com hofer.force.com hofer.secure.force.com int-crm.my.salesforce.com EU17.salesforce.com EU17.force.com EU36.salesforce.com EU36.force.com static.lightning.force.com secure.force.com *.salesforceliveagent.com *.cookielaw.org *.onetrust.com *.salesforce-sites.com *.gstatic.com s7g10.scene7.com; font-src 'self' *.gstatic.com data:; frame-src 'self' *.demdex.net *.facebook.com *.google.com *.youtube.com *.youtube-nocookie.com *.customervoice360.com *.adobe.com aldisued.marketing.adobe.com *.psa.at aldisued.experiencecloud.adobe.com web-psa-preprod.mp-testing.com rest-b2b-crt-preprod.mp-testing.com psa-card-administration.mobile-pocket.com *.iesnare.com www.elettershop.de t.elettershop.de *.salesforceliveagent.com service.force.com activitymap.adobe.com *.omniture.com qasfix-hofer.cs101.force.com cs101.salesforce.com *.doubleclick.net www.zurueckzumursprung.at storefinder.aldi.at https://empty-fridge-widget.vercel.app https://gewinnspiel.aldi-sued.de test.storefinder.aldi.at cs107.salesforce.com eu17.salesforce.com medienkontakt.hofer.at int-crm.my.salesforce.com eu36.salesforce.com hofer.secure.force.com EU17.force.com EU36.force.com static.lightning.force.com secure.force.com hofer.force.com check-your-product.com www.check-your-product.com hofer-tickets.at/redeem test.etcgmbh.de/redeem *.salesforce-sites.com *.salesforce.com katalog.hofer.at *.brame.io *.brame-gamification.com brame-static.s3.eu-central-1.amazonaws.com brame-campaign-data-storage.s3.amazonaws.com interaktiv.www.hofer.at *.questback.com www.googletagmanager.com; worker-src 'self' blob:; frame-ancestors 'self' https://aldisued.marketing.adobe.com https://aldisued.experiencecloud.adobe.com https://www.elettershop.de https://t.elettershop.de https://experience.adobe.com hofer-custom.staffbase.com unserhofer.hofer.at localhost:*
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
178 domains
adventkalender.hofer.at
adventskalender.hofer.at
community.hofer.at
datenschutz.hofer.at
eventplus.hofer.at
fitmit.hofer.at
gewinnspiel.hofer.at
karriere.hofer.at
kontakt.hofer.at
meinemeinung.hofer.at
my.hofer.at
presseberichte.hofer.at
stundenplan.hofer.at
tippspiel.hofer.at
unsub.hofer.at
urbangardening.hofer.at
vinothek.hofer.at
wlan.hofer.at
gewinnspiel.eventplus.hofer.at
www.adventkalender.hofer.at
www.adventskalender.hofer.at
www.community.hofer.at
www.datenschutz.hofer.at
www.eventplus.hofer.at
www.fitmit.hofer.at
www.gewinnspiel.hofer.at
www.karriere.hofer.at
www.kontakt.hofer.at
www.meinemeinung.hofer.at
www.tippspiel.hofer.at
www.urbangardening.hofer.at
www.vinothek.hofer.at
www.gewinnspiel.eventplus.hofer.at
www.adventnikoledar.si
aldi-sued-holding-careers.com
www.aldi-sued-holding-careers.com
holding-careers.aldi-sued.com
concorso.aldi-suisse-tours.ch
concours.aldi-suisse-tours.ch
wettbewerb.aldi-suisse-tours.ch
www.concorso.aldi-suisse-tours.ch
www.concours.aldi-suisse-tours.ch
www.wettbewerb.aldi-suisse-tours.ch
15anni.aldi-suisse.ch
15ans.aldi-suisse.ch
15jahre.aldi-suisse.ch
apps.aldi-suisse.ch
articlesdisponibles.aldi-suisse.ch
disponibilita.aldi-suisse.ch
jobs.aldi-suisse.ch
meinemeinung.aldi-suisse.ch
retourauxsource.aldi-suisse.ch
retourauxsources.aldi-suisse.ch
verfuegbarkeitsabfrage.aldi-suisse.ch
vinoteca.aldi-suisse.ch
win.aldi-suisse.ch
www.jobs.aldi-suisse.ch
www.meinemeinung.aldi-suisse.ch
www.retourauxsource.aldi-suisse.ch
www.retourauxsources.aldi-suisse.ch
www.vinoteca.aldi-suisse.ch
www.win.aldi-suisse.ch
storefinder.aldi.at
www.storefinder.aldi.at
emploidutemps.aldi.ch
jobs.aldi.ch
orarioscolastico.aldi.ch
panetteria.aldi.ch
stundenplan.aldi.ch
vinoteca.aldi.ch
www.jobs.aldi.ch
www.panetteria.aldi.ch
www.vinoteca.aldi.ch
azonmelegeben.aldi.hu
borvilag.aldi.hu
karrier.aldi.hu
vinoteka.aldi.hu
www.azonmelegeben.aldi.hu
www.borvilag.aldi.hu
www.karrier.aldi.hu
www.recruiting.aldi.hu
www.vinoteka.aldi.hu
carriera.aldi.it
rassegnastampa.aldi.it
vinoteca.aldi.it
www.carriera.aldi.it
www.vinoteca.aldi.it
backbox.at
www.backbox.at
biokoticek.si
www.biokoticek.si
fairhof.at
www.fairhof.at
fer-tv.si
www.fer-tv.si
ferfud.si
www.ferfud.si
ferteve.si
www.ferteve.si
fertv.si
www.fertv.si
heutefuermorgen.ch
www.heutefuermorgen.ch
hfm-slo.si
www.hfm-slo.si
hfrqr.com
hofer-cena.si
www.hofer-cena.si
ibkpi.hofer-online.eu
onlinegalerie.hofer-online.eu
securityawareness.hofer-online.eu
gewinnspiel.hofer-reisen.at
muttertag.hofer-reisen.at
s.hofer-reisen.at
www.gewinnspiel.hofer-reisen.at
www.xn--jubilum-9wa.hofer-reisen.at
xn--jubilum-9wa.hofer-reisen.at
aldi.hofer.eu
subscr.aldi.hofer.eu
adventnikoledar.hofer.si
daneszajutri.hofer.si
enovice.hofer.si
ferfud.hofer.si
hoferscena.hofer.si
kariera.hofer.si
kliping.hofer.si
manjvrec.hofer.si
mojemnenje.hofer.si
nasmeskotek.hofer.si
naturaktiv.hofer.si
naturaktivzajtrk.hofer.si
trznica.hofer.si
urnik.hofer.si
vinoteka.hofer.si
www.daneszajutri.hofer.si
www.enovice.hofer.si
www.kariera.hofer.si
www.mojemnenje.hofer.si
www.naturaktiv.hofer.si
www.vinoteka.hofer.si
zaloge.hofer.si
download.hoferfoto.si
hoferfoto.si
shop.hoferfoto.si
www.hoferfoto.si
hoferlehre.at
www.hoferlehre.at
gewinnspiel.hoferlife.at
www.gewinnspiel.hoferlife.at
hofertrznica.si
www.hofertrznica.si
hofertv.si
www.hofertv.si
www.iss-reif.com
manjvrec.si
www.manjvrec.si
nasmeskotek.si
naturaktiv.si
www.naturaktiv.si
natureactive.ch
www.natureactive.ch
naturesuisse.ch
www.naturesuisse.ch
naturesuissebio.ch
www.naturesuissebio.ch
oggiperdomani.it
www.oggiperdomani.it
essensretter.projekt2020.at
projekt2020.at
www.projekt2020.at
vota-aldi.ch
www.vota-aldi.ch
votez-aldi.ch
www.votez-aldi.ch
waehl-aldi.ch
www.waehl-aldi.ch
www.zurueckzumursprung.at
zurueckzumursprung.at
Other domains in certificate