SSL Certificate Analysis for info.eprf.eu - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=fordstock.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 03, 2026

Valid Until

August 01, 2026 80 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

04:E3:3A:B0:4D:6B:E6:06:B5:04:B0:84:96:43:F0:A0:B1:C8:AC:CD:85:DB:22:81:58:38:BE:36:3D:EB:39:C6

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

eprf.eu *.eprf.eu *.aviso.eprf.eu *.boletin.eprf.eu *.cn.eprf.eu *.feed.eprf.eu *.info.eprf.eu *.mail.eprf.eu *.mark.eprf.eu *.news.eprf.eu *.sky.eprf.eu *.vm.eprf.eu

Other domains in certificate

963279.com *.963279.com *.admin.963279.com *.cicd.963279.com *.remote.963279.com *.www.963279.com

bosses.org *.bosses.org *.m.bosses.org

*.admin.c-a-r.net c-a-r.net *.c-a-r.net *.cisco.c-a-r.net *.ciscovpn.c-a-r.net *.drvpn.c-a-r.net *.firewall.c-a-r.net *.gate.c-a-r.net *.imap.c-a-r.net *.owa.c-a-r.net *.portal.c-a-r.net *.ravpn.c-a-r.net *.remote.c-a-r.net *.smtp.c-a-r.net *.ssl.c-a-r.net *.sslvpn.c-a-r.net *.vpn.c-a-r.net *.webdisk.c-a-r.net *.webmail.c-a-r.net

*.comune.doritoto.pro doritoto.pro *.doritoto.pro

egyshare.cc *.egyshare.cc *.m.egyshare.cc *.mm.egyshare.cc *.ww12.egyshare.cc *.ww7.egyshare.cc

ekala.co *.ekala.co *.mail.ekala.co *.www.ekala.co

fordstock.com *.fordstock.com *.ww25.fordstock.com *.ww38.fordstock.com

gfer4.xyz *.gfer4.xyz *.photo.gfer4.xyz *.random.gfer4.xyz *.ww25.gfer4.xyz

*.dev.hlw050.life hlw050.life *.hlw050.life *.sitemap.hlw050.life *.staging.hlw050.life *.www.hlw050.life

*.aff.hoffmanssantacruz.com *.cpanel.hoffmanssantacruz.com hoffmanssantacruz.com *.hoffmanssantacruz.com *.taff.hoffmanssantacruz.com *.www.hoffmanssantacruz.com

*.dev.prepackagedvacations.com *.mailer.prepackagedvacations.com prepackagedvacations.com *.prepackagedvacations.com *.qa.prepackagedvacations.com *.stg.prepackagedvacations.com

*.in.seospot.co *.mail2.seospot.co seospot.co *.seospot.co

*.crm.tomsplaceinc.com *.m.tomsplaceinc.com *.new.tomsplaceinc.com *.superset.tomsplaceinc.com tomsplaceinc.com *.tomsplaceinc.com