SSL Certificate Analysis for glissier.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=hitgaylist.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 07, 2026

Valid Until

May 08, 2026 72 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

D2:5E:D1:FE:DB:34:5B:81:6F:0B:52:89:58:CC:9F:34:0E:56:9C:20:37:C5:C4:81:F5:A0:37:3A:28:20:FF:0F

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

glissier.com *.glissier.com *.wildcard.glissier.com

Other domains in certificate

atanos.com *.atanos.com *.blog.atanos.com *.mail.atanos.com

bandbhydroponicgardens.com *.bandbhydroponicgardens.com *.mail.bandbhydroponicgardens.com *.partner.bandbhydroponicgardens.com

*.0a374bce-2fb2-4b2e-b685-d6c28f12b39a.coolbox.com.au coolbox.com.au *.coolbox.com.au *.e8a3b8ad-4689-4614-ab3c-5e0c658f3af0.coolbox.com.au *.emv.coolbox.com.au *.emv1.coolbox.com.au *.www.coolbox.com.au

dallascommercialinsurance.com *.dallascommercialinsurance.com *.www.dallascommercialinsurance.com

dietacetogenicamysantoscompany.com *.dietacetogenicamysantoscompany.com

*.ams1-mysql-dppod-1b.dreahost.com dreahost.com *.dreahost.com *.iad1-mysql-e2-10a.dreahost.com *.ns2.dreahost.com *.ns3.dreahost.com *.webmail.dreahost.com

fishmedulin.com *.fishmedulin.com

hitgaylist.com *.hitgaylist.com *.skldjww16.hitgaylist.com *.wildcard.hitgaylist.com *.ww1.hitgaylist.com

ktopstyle.space *.ktopstyle.space *.random.ktopstyle.space

*.backup.leeschachtschneider.com leeschachtschneider.com *.leeschachtschneider.com *.wildcard.leeschachtschneider.com *.ww11.leeschachtschneider.com *.ww16.leeschachtschneider.com *.ww38.leeschachtschneider.com

*.meteo.missingtoolsapps.com missingtoolsapps.com *.missingtoolsapps.com *.random.missingtoolsapps.com

muo.au *.muo.au *.wildcard.muo.au

*.112951.neopacu.biz *.cb.neopacu.biz neopacu.biz *.neopacu.biz *.pk.neopacu.biz

*.multiweb.nll.com.au nll.com.au *.nll.com.au *.wildcard.nll.com.au *.ww25.nll.com.au

*.mail02.offroads.com *.mail10.offroads.com *.ns1.offroads.com offroads.com *.offroads.com *.pbrand.offroads.com *.smtps.offroads.com *.trk.offroads.com *.www.offroads.com

*.admin.oneplud.com *.hostmaster.oneplud.com oneplud.com *.oneplud.com *.random.oneplud.com *.wildcard.oneplud.com

*.evo.techno4theplanet.com techno4theplanet.com *.techno4theplanet.com *.ww25.techno4theplanet.com

tv432.com *.tv432.com *.ww17.tv432.com *.www.tv432.com

web-incentive.fr *.web-incentive.fr *.www.web-incentive.fr