Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=thepostalserviceofhappiness.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 06, 2025
Valid Until
January 04, 2026
53 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
72:1C:28:C2:27:B6:C4:91:BE:93:80:CD:95:45:AF:64:5B:E2:FB:78:DC:4E:B4:4A:88:83:83:7C:C4:AD:A2:B8
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
grupocomunicatea.com
kyosointeractive.12traits.com
www.aakashtiwari.com
www.aana.app
app.ab-bern.ch
advisor-uat.albumhealth.com
sudokugame.alignitgames.com
onboarding.allariamas.com.ar
dl.alprocto.com
iwishyouwas.apoop.ooo
link.b-dev.brd.so
www.brunovjk.com
www.butsuryu-ukeoi.com
candacegutmann.com
dashboard.classemo.com
www.rekreate.co.in
vigor-witaminy.com.pl
inclaw.com.ua
conexioncanarias.com
courantapp.com
cucipetzi.de
app.dai5.io
devadmin.dangkiem65-05d.com
trabajaseguro-ai.datascope.io
www.debatemap.live
deepvotion.com
reservations.drive-la.com
www.dvsoftech.com
dylomite.com
www.easymessageapp.com
manage.ecosystem.co.uk
elitehouseye.com
web-sdk-staging.gassets.emarsys.com
erickthedev.com
api-dev.ethy.co.uk
auth.evertransit.com
help.expense-robot.com
fcssport.com
feetinchcalculator.com
florisschippers.nl
fronthouse.no
www.georgechios.com
zoom-deauth-staging.gmelius.io
www.haenajung.com
www.halilibrahimtuna.com
cdn.hegi.app
holdsworth.dev
www.hpnwbbb.org
app.insightlive.space
isaacdomini.com
ivanvriezen.nl
jacobbarnes.xyz
lca-alameda.clients.joinpromise.com
jonathan.solar
eunice.joshuabennett.dev
justinbarksdale.com
www.kinoco.biz
aiep.klarway.com
www.kul.cloud
pong.liveswitch.io
go.makinamania.com
link.qa-app.marksandspencerfoodme.com
widget.meetvolley.com
licenciasdeapertura.milanoingenieria.es
develop-sell.modulusseventeen.com
rihcing.mwlarp.com
dev-web.mypandaapp.com
www.observatoriocancerhn.com
speedtest.paloaltonetworks.com
www.porkshop.ca
edenwealth.portfoliolink.co.za
www.preeminenthlcltd.co.uk
prod.projetz.recursyve.dev
qs.redsols.us
www.regroup-app.com
www.rointeconnect.com
onelink.safehousetech.com
samorg.no
sc01.scalecloud.jp
developers.screenshots.pro
tadako11.snssurvey.com
app-kirindo-dev.stailer.jp
staging.stoq.shop
staging.facility.storagepug.com
www.tfarquitectos.pt
blog.thebearlab.com
www.thefedors.com
thepostalserviceofhappiness.com
www.thevideoclock.com
old.thinkout.io
members.ttrufitness.com
varia.codes
lab3.ic.vezham.com
www.vezham.com
vuejs.ro
intra-staging.walkie-talkie.io
www.watersciencepolicy.com
cms.wellyou.co
app.wildfeelings.co
willpragnell.com
Other domains in certificate