DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=vitamins.live
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 01, 2026
Valid Until
May 02, 2026 83 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5E:60:E1:48:3F:81:AF:E7:E5:69:53:2D:B8:45:F5:AF:1C:43:3A:AA:DE:64:89:90:E4:91:C7:44:B5:8B:29:1C
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
flodur.com *.flodur.com *.www.flodur.com

Other domains in certificate

2828.live *.2828.live *.admin.2828.live *.api.2828.live *.app.2828.live *.blog.2828.live
*.500.bundesverwaltung.de bundesverwaltung.de *.bundesverwaltung.de
cormin.com *.cormin.com *.hostmaster.cormin.com
dehousing.com *.dehousing.com *.devds.dehousing.com
ftbupbx.com *.ftbupbx.com *.m0.ftbupbx.com *.m1.ftbupbx.com *.m13.ftbupbx.com *.m14.ftbupbx.com *.m15.ftbupbx.com *.m18.ftbupbx.com *.m19.ftbupbx.com *.m2.ftbupbx.com *.m21.ftbupbx.com *.m22.ftbupbx.com *.m24.ftbupbx.com *.m26.ftbupbx.com *.m27.ftbupbx.com *.m28.ftbupbx.com *.m30.ftbupbx.com *.m31.ftbupbx.com *.m33.ftbupbx.com *.m35.ftbupbx.com *.m36.ftbupbx.com *.m37.ftbupbx.com *.m39.ftbupbx.com *.m5.ftbupbx.com *.ww25.ftbupbx.com
gva.bio *.gva.bio
*.blog.mastertech.tech *.cpanel.mastertech.tech *.email.mastertech.tech *.homolog.mastertech.tech *.insights.mastertech.tech mastertech.tech *.mastertech.tech *.sip.mastertech.tech *.sonarqube.mastertech.tech *.wildcard.mastertech.tech
*.a1.multk.me multk.me *.multk.me *.ww25.multk.me
reachingtrigifyplatform.com *.reachingtrigifyplatform.com
realestatesttropez.com *.realestatesttropez.com
refrigerator-info.com *.refrigerator-info.com
rnome.org *.rnome.org
santamonicalegalservices.com *.santamonicalegalservices.com
smpmuhajirincikupa.org *.smpmuhajirincikupa.org
teamlogicitcomo.com *.teamlogicitcomo.com
tothemoon.dev *.tothemoon.dev
*.dan.vitamins.live *.jebjphpahptnagsbokoq.vitamins.live *.mx.vitamins.live *.smtp.vitamins.live *.test.vitamins.live vitamins.live *.vitamins.live *.www.vitamins.live
wpeum.academy *.wpeum.academy
xn--dkrt34al1dcux.com *.xn--dkrt34al1dcux.com
*.admin.xn--i1bj3c2fua7cvf.com xn--i1bj3c2fua7cvf.com *.xn--i1bj3c2fua7cvf.com