Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=scentsforyou.co.uk
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
March 29, 2026
Valid Until
June 27, 2026
38 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
9C:EE:1B:50:A9:CD:7D:6F:EF:EF:11:55:CC:6D:B4:DE:EE:89:3B:15:64:FA:7F:D8:28:F9:F4:CF:DF:DA:B6:6F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
63 domains
ijjune.com
*.ijjune.com
asko.fun
*.asko.fun
*.ver.asko.fun
balmes-ebooking.online
*.balmes-ebooking.online
carinsurqnceinfo.com
*.carinsurqnceinfo.com
*.zwt90kswte.carinsurqnceinfo.com
dallards.com
*.dallards.com
*.ww11.dallards.com
emeriustalisman.online
*.emeriustalisman.online
emotivcis.online
*.emotivcis.online
harleyshirts.com
*.harleyshirts.com
helpforlife.me
*.helpforlife.me
insurifyy.com
*.insurifyy.com
*.random.insurifyy.com
jesscox.com
*.jesscox.com
karban.tech
*.karban.tech
kollakek.online
*.kollakek.online
loudsafari.com
*.loudsafari.com
moviesjoyz.online
*.moviesjoyz.online
*.ww25.moviesjoyz.online
newsshelf.online
*.newsshelf.online
pelismundo.online
*.pelismundo.online
pujckyucetnictvipraha.cz
*.pujckyucetnictvipraha.cz
*.www.pujckyucetnictvipraha.cz
rajendra.tech
*.rajendra.tech
scentsforyou.co.uk
*.scentsforyou.co.uk
smartpiano.pl
*.smartpiano.pl
soundproofing.com.au
*.soundproofing.com.au
*.mta-sts.tahrfoundation.org
*.myslaveserver.tahrfoundation.org
tahrfoundation.org
*.tahrfoundation.org
*.www.tahrfoundation.org
*.test.tx777.bet
tx777.bet
*.tx777.bet
ver3smm.online
*.ver3smm.online
*.2.xinghe8.icu
xinghe8.icu
*.xinghe8.icu
Other domains in certificate