Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=teachers.chatwithsteiner.de
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 19, 2025
Valid Until
January 17, 2026
69 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A2:36:30:08:9D:1E:23:18:F6:AE:70:A0:89:52:97:9C:E0:80:7E:13:98:C8:47:73:84:32:C6:83:E9:BB:51:4B
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
kussha.com
admin.aiduplay.com
aoeu.com
africa.bantumart.com
admin.bazarpay360.com
beatthebeans.com
link-dev.bizibaza.com
www.bluegrass-saddlefit.com
www.boskemper.nl
industry.brainyant.com
verify.bronid.com
brycewoods.com
budget-and-habits.app
l.buzzbee.com
api.cannactrl.com
teachers.chatwithsteiner.de
mobidashboard.pinnaclelife.com.gh
construtoraaso.com.br
app.dah-qa.top
david-yaranon.com
rivas.dazeo.com.ar
demogram.cz
despachomonher.com
dev-andrade.com
www.dreamcatcher.asia
time.elitesleepprofessionals.com
esterinity.com
explorelogy.lk
app.fernandovr.com.br
foureach.be
yourguitar.frenval.cloud
galas.fm
gaming-house.be
garagekam.com.br
geek-salon-products.com
geninj.com
go.getwombat.io
gstinfissi.com
www.harsivo.com
www.hexaflexdev.com
homecomingranch.com
tranducnam.id.vn
ieeeunisabana.com
vijaydhanush.indiandevelopers.org
app.investify.africa
isolationspiritanimal.com
janitha.com
jinroumura.com
joinkahana.com
app.jummo.io
klikanduse.fr
ko-software.solutions
faq.l3x.in
limius.fr
shplist.ltl-xpo.com
maceladourada.com.br
mapahistorico.com
mdaware.io
mechastats.com
meddoes.com
scheduler.michaelreza.com
mint-teams.com
www.muskegonoperating.com
myhedgie.com
nadialwilson.com
my.noodlegroup.com
valigator.numa.dev
oblivionforge.com
outraverse.io
www.panoramas.info
perks.ltd
social-media-toolkit.pixelsucht.net
www.playbaccarat-online.com
playmahjong-online.com
entry.plus-ins.net
staging.rootedfarmers.com
rufinomateo.com
app-congreso.samsociedad.com.ar
www.sapsi.com.br
www.sarahvalstyne.com
shiftmee.com
www.smillias-paysagiste.fr
snapfurnish.com
snappdraft.com
www.staige.tv
www.sukolab.jp
sunsetle.com
dashboard.teil.io
thanhbee.com
thisisfrozen.com
tomtomtransfer.com
trapnlos.com
unityelements.com
www.urbanecosolutions.in
clotidal.dev.usp.center
www.utkina-design.com
valenciafinancialgroup.com
todolist.wreif.co.uk
go-dev.yodo.ch
corp.zeromint.com
Other domains in certificate