SSL Certificate Analysis for imyouare.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=rfcb.org

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

April 28, 2026

Valid Until

July 27, 2026 55 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

94:47:71:45:5A:9A:3D:2B:56:79:6F:F8:68:56:F5:F8:9D:51:1B:8B:63:FC:3A:BC:74:04:04:4C:CA:56:A1:31

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

imyouare.com *.imyouare.com *.com.imyouare.com *.ww38.imyouare.com

Other domains in certificate

0418-bath-remodel.sbs *.0418-bath-remodel.sbs *.orgwww.0418-bath-remodel.sbs

073275.com *.073275.com *.ibow.073275.com

3659910.com *.3659910.com *.sitemaps.3659910.com *.wwww.3659910.com

dnxhs.one *.dnxhs.one

*.admin.eurotic.it *.api.eurotic.it *.app.eurotic.it *.dashboard.eurotic.it *.demo.eurotic.it eurotic.it *.eurotic.it *.mx.eurotic.it *.superset.eurotic.it *.webmail.eurotic.it

everlastingitinerary.live *.everlastingitinerary.live

failedtoestablish.in *.failedtoestablish.in

*.ftp.genealogist.me genealogist.me *.genealogist.me

greenwoodce.co *.greenwoodce.co

*.2a36f28d-342c-4657-84c2-4ba2faba7974.nolanapp.info *.36f0995d-f54a-43e3-bb0e-27066745719e.nolanapp.info *.a.nolanapp.info *.a6accae3-fc64-4309-acea-84611c5853d5.nolanapp.info *.admin.nolanapp.info *.api.nolanapp.info *.app.nolanapp.info *.apps.nolanapp.info *.assets.nolanapp.info *.blog.nolanapp.info *.demo.nolanapp.info *.dev.nolanapp.info *.hm.nolanapp.info *.mail.nolanapp.info *.members.nolanapp.info nolanapp.info *.nolanapp.info *.owa.nolanapp.info *.poczta.nolanapp.info *.shop.nolanapp.info *.test.nolanapp.info *.vvjmaa.nolanapp.info *.ww7.nolanapp.info

*.backend.prores.it prores.it *.prores.it *.remote.prores.it *.www.prores.it

*.mail.queenofphochapelhill.com queenofphochapelhill.com *.queenofphochapelhill.com

*.hostmaster.rfcb.org rfcb.org *.rfcb.org *.www.rfcb.org

*.phiraios.rizline.buzz *.phiralos.rizline.buzz rizline.buzz *.rizline.buzz *.superset.rizline.buzz

rwha.de *.rwha.de *.ww25.rwha.de

*.autodiscover.sanitationsolutionsgroup.com *.freshpit.sanitationsolutionsgroup.com *.ftp.sanitationsolutionsgroup.com sanitationsolutionsgroup.com *.sanitationsolutionsgroup.com

saturdaygaragedoors.com *.saturdaygaragedoors.com *.www.saturdaygaragedoors.com

*.hiafck.ybradtke.com *.ovtsn.ybradtke.com ybradtke.com *.ybradtke.com