Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=backlund.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 19, 2026
Valid Until
May 20, 2026
88 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
A6:A1:A0:36:83:F7:97:99:22:A5:80:80:98:86:0D:F3:59:97:D7:78:91:49:38:FC:7F:A4:F2:75:2A:A5:FB:33
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
89 domains
lafuneraria.com
*.lafuneraria.com
*.sitemap.lafuneraria.com
*.sitemaps.lafuneraria.com
*.ww1.lafuneraria.com
*.ww16.lafuneraria.com
*.ww17.lafuneraria.com
*.ww25.lafuneraria.com
27277467.top
*.27277467.top
*.d.27277467.top
*.kwid9.27277467.top
*.ar.backlund.it
*.astelmail.backlund.it
backlund.it
*.backlund.it
*.citrix.backlund.it
*.mail.backlund.it
*.supersets.backlund.it
*.a.derma.es
derma.es
*.derma.es
*.ww25.derma.es
*.ww38.derma.es
*.admin.garben.com
*.cloud.garben.com
*.cspgrupo.garben.com
*.flower.garben.com
*.fortinet.garben.com
garben.com
*.garben.com
*.mail.garben.com
*.mlearning.garben.com
*.ravpn.garben.com
*.secure.garben.com
*.vmail.garben.com
*.ww1.garben.com
*.www.garben.com
granmaestro.it
*.granmaestro.it
*.www.granmaestro.it
*.dev.lakmedia.com
lakmedia.com
*.lakmedia.com
*.ns1.lakmedia.com
*.autodiscover.mtybets.org
mtybets.org
*.mtybets.org
*.ssh.mtybets.org
*.baca.ngopimedia.com
*.health.ngopimedia.com
ngopimedia.com
*.ngopimedia.com
*.ns3.nxmctvz.info
nxmctvz.info
*.nxmctvz.info
otwjos55.love
*.otwjos55.love
*.www.otwjos55.love
pearsoncertprep.com
*.pearsoncertprep.com
*.www.pearsoncertprep.com
playchess.co
*.playchess.co
*.www.playchess.co
qzg8loe.cc
*.qzg8loe.cc
realtytherapy.com
*.realtytherapy.com
*.app.reimaginepleasure.com
*.cacti.reimaginepleasure.com
*.demo.reimaginepleasure.com
*.dev1superset.reimaginepleasure.com
*.hostmaster.reimaginepleasure.com
*.members.reimaginepleasure.com
*.rds.reimaginepleasure.com
reimaginepleasure.com
*.reimaginepleasure.com
*.remote.reimaginepleasure.com
*.staging.reimaginepleasure.com
*.vpn.reimaginepleasure.com
retirementinstitute.org
*.retirementinstitute.org
*.vpn.retirementinstitute.org
romhu.cc
*.romhu.cc
*.groups.youluoli.xyz
youluoli.xyz
*.youluoli.xyz
Other domains in certificate