Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=middels.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 13, 2026
Valid Until
May 14, 2026
86 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
25:8D:BB:DA:50:02:79:DD:50:36:04:C4:F7:4D:23:E4:77:90:06:0A:12:D6:2B:BF:10:6F:FF:AE:0C:43:4A:BF
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
fotobright.com
*.fotobright.com
bakis.com.au
*.bakis.com.au
frenchstream.live
*.frenchstream.live
*.chakihina.ishiro.com
*.comune.ishiro.com
*.felix.ishiro.com
ishiro.com
*.ishiro.com
*.printf.ishiro.com
*.adminpanel.lats.net
*.checkpoint.lats.net
*.ciscovpn.lats.net
*.jltf.lats.net
lats.net
*.lats.net
*.mat.lats.net
*.relay2.lats.net
*.ww1.lats.net
*.demo.middels.it
middels.it
*.middels.it
*.email.panis.com
*.mail.panis.com
*.mica.panis.com
panis.com
*.panis.com
*.wiki.panis.com
*.ch.robotomorphy.com
*.com.robotomorphy.com
*.net.robotomorphy.com
robotomorphy.com
*.robotomorphy.com
*.xyz.robotomorphy.com
sexsites.it
*.sexsites.it
*.staging.sexsites.it
*.access.simonedebeauvoir.com
*.apps.simonedebeauvoir.com
*.connect.simonedebeauvoir.com
*.gateway.simonedebeauvoir.com
*.gp.simonedebeauvoir.com
*.hostmaster.simonedebeauvoir.com
*.m.simonedebeauvoir.com
*.mymail.simonedebeauvoir.com
*.portal.simonedebeauvoir.com
*.pzjvpremoteapp.simonedebeauvoir.com
*.rd.simonedebeauvoir.com
*.rdp.simonedebeauvoir.com
*.rds.simonedebeauvoir.com
*.rdweb.simonedebeauvoir.com
*.remote.simonedebeauvoir.com
*.remoteapp.simonedebeauvoir.com
*.secure.simonedebeauvoir.com
simonedebeauvoir.com
*.simonedebeauvoir.com
*.ssl.simonedebeauvoir.com
*.sslvpn.simonedebeauvoir.com
*.vpn1.simonedebeauvoir.com
*.vpnssl.simonedebeauvoir.com
*.webvpn.simonedebeauvoir.com
*.ww17.simonedebeauvoir.com
*.ww41.simonedebeauvoir.com
*.api.wiwak.info
*.m.wiwak.info
wiwak.info
*.wiwak.info
*.www.wiwak.info
*.cloud.xn--gestorh-0wa.com
*.rd.xn--gestorh-0wa.com
*.rdweb.xn--gestorh-0wa.com
*.remote.xn--gestorh-0wa.com
xn--gestorh-0wa.com
*.xn--gestorh-0wa.com
*.e6784fd0-a979-4c8f-9399-7f18a6c5bccf.xox.org
*.eyi.xox.org
*.hiromi.xox.org
*.hostmaster.xox.org
*.hx2.xox.org
*.iai.xox.org
*.jcp0k.xox.org
*.pita.xox.org
*.rs1e.xox.org
*.wiki.xox.org
*.wpaww.xox.org
xox.org
*.xox.org
Other domains in certificate