SSL Certificate Analysis for ftp.emmanuelmbaka.net - Security Grade & TLS Configuration

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Hostname Mismatch - certificate is issued for *.alp.ng, *.amana.ng, *.amanamarket.org, *.blissville.ng, *.coamana.ng, *.coamanamarket.com, *.coamanamarket.ng, *.educlimax.ng, *.fedoz.ng, not for ftp.emmanuelmbaka.net

Open Cached · just now

75/100 SECURITY SCORE

Certificate Information

Subject

CN=educlimax.ng

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 06, 2026

Valid Until

April 06, 2026 87 days

Public Key

RSA 2048 bit Adequate

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

4C:0A:94:5D:30:A6:AA:97:71:56:96:D6:D1:9B:90:C2:71:04:D5:3B:BB:87:95:75:CA:F3:F0:5B:0C:B5:41:21

Alternative Names

100 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

100 domains

emmanuelmbaka.net

Other domains in certificate

abnass.com

alislam.ng

alp.ng *.alp.ng

amana.ng *.amana.ng

amanamarket.org *.amanamarket.org

amber.ng

aridunu.com

astrics.ng

babarice.com

baseus.ng

besttopup.ng

blissville.ng *.blissville.ng

bmwclub.ng

bpsany.ng

brisk.ng

carpapers.ng

cieeen.org

coamana.ng *.coamana.ng

coamanamarket.com *.coamanamarket.com

coamanamarket.ng *.coamanamarket.ng

coamanamarket.org

comeinn.ng

damexplore.ng

doublerootcoffee.ng

drugstorenigeria.com

dwellora.ng

educlimax.ng *.educlimax.ng

ekohotblog.ng

emmanuelmbakafoundation.com

emmanuelmbakafoundation.org

emmanuelmbakaofafrica.com

emmanuelndubuisimbaka.com

epoxyfloor.ng

fastlane.ng

fedoz.ng *.fedoz.ng

fedoz.org *.fedoz.org

fordax.ng

fthlab.com *.fthlab.com

fthlab.net

fthlab.ng

groceries.ng

havanzer.ng

hniprime.com

ibatea.com

interns.ng

kinisoo.com *.kinisoo.com

kleanas.com

koropey.ng

landwey.ng

leotetra.com

mauwizo.com

millandhotel.ng *.millandhotel.ng

muryarhausa24.com

nahbpon.ng

noipolls.com *.noipolls.com

northino.ng

odemru.com

onile.ng

passage.ng

payinto.ng

pcnihouston.org www.pcnihouston.org

peoplesclubofnigeriahouston.com

peoplesclubofnigeriahouston.org

placedealers.com *.placedealers.com

plugs.ng

rimsltd.com

ritelink.ng

rivetsoftware.org

swh.ng

tabithacumifoundation.org

techgix.ng

trueislam.ng

valueanalyticsolutions.net

valueanalyticsolutions.org

vetarent.ng

mail.whispa.ng whispa.ng www.whispa.ng

whisper.ng *.whisper.ng

zaihar.com

zaihar.ng

zannoza.net