SSL Certificate Analysis for hostmaster.yonkes.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=jkflag3.baby

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

February 04, 2026

Valid Until

May 05, 2026 71 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

73:AE:EE:76:31:73:47:C7:4A:C7:00:8B:F8:50:BF:8E:22:C7:83:F2:F1:45:80:71:57:0A:05:F5:9C:BE:C3:6C

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

yonkes.com *.yonkes.com *.ww16.yonkes.com

Other domains in certificate

alitayyebi.com *.alitayyebi.com *.gpyq.alitayyebi.com *.gxxwi.alitayyebi.com *.mail.alitayyebi.com *.tpwg.alitayyebi.com *.vkpe.alitayyebi.com *.www.alitayyebi.com *.ytcph.alitayyebi.com *.zlyye.alitayyebi.com

autostations.com *.autostations.com *.ww11.autostations.com

birthcertificateonline.net *.birthcertificateonline.net *.netww16.birthcertificateonline.net

cardtronix.com *.cardtronix.com *.ftp.cardtronix.com *.ipe.cardtronix.com *.mail11.cardtronix.com *.project.cardtronix.com *.ww17.cardtronix.com

culturaeuropea.it *.culturaeuropea.it *.mta-sts.culturaeuropea.it

datingadvisor.es *.datingadvisor.es *.ww25.datingadvisor.es

*.api.infortpwow99.click *.dashboard.infortpwow99.click infortpwow99.click *.infortpwow99.click *.v1.infortpwow99.click

ipcam.hk *.ipcam.hk *.user.ipcam.hk

jkflag3.baby *.jkflag3.baby *.ww17.jkflag3.baby

malindibeachcafe.com *.malindibeachcafe.com *.ww25.malindibeachcafe.com

*.mx.ndefenu.me ndefenu.me *.ndefenu.me *.ww25.ndefenu.me

panatelabenefit.com *.panatelabenefit.com

*.2021.phuonganh.com *.backup.phuonganh.com *.beta.phuonganh.com *.crm.phuonganh.com *.forums.phuonganh.com *.help.phuonganh.com *.hostmaster.phuonganh.com phuonganh.com *.phuonganh.com *.sitemap.phuonganh.com *.tudien.phuonganh.com *.ww.phuonganh.com *.ww01.phuonganh.com *.ww1.phuonganh.com *.ww11.phuonganh.com *.ww16.phuonganh.com *.ww17.phuonganh.com *.ww25.phuonganh.com *.ww38.phuonganh.com *.yody.phuonganh.com

*.login.rooomster.com rooomster.com *.rooomster.com *.staging.rooomster.com *.ww1.rooomster.com *.ww25.rooomster.com

*.8d7934e7-47e2-4eff-8885-91a606528616.srcfindtools.net *.app.srcfindtools.net *.cpanel.srcfindtools.net *.secure.srcfindtools.net srcfindtools.net *.srcfindtools.net *.www.srcfindtools.net

*.staging.vijayinfra.in vijayinfra.in *.vijayinfra.in

zgyhg6by.top *.zgyhg6by.top