Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
CN=www.rencontres-gourmandes-pornichet.fr
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 16, 2025
Valid Until
January 14, 2026
65 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
95:12:3E:84:DC:0C:B3:A8:97:9C:A2:73:ED:DA:97:4B:1E:85:33:96:B7:34:70:39:DE:B3:42:0A:7B:F4:C2:C2
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
luumba.com
user.proptool.adityaworks.com
ahaconsultingservices.com
www.alexrigg.co.uk
alpha-spectrum.com
socialapp.alphacrewstudio.com
chromecastwebrtc.aquinventures.ltd
auptra.com
seo.apps.avada.io
www.bharatjangir.com
bigtreescorvallis.com
www.bitnitro.xyz
bluemarlinarcade.com
bugattigeneraltrade.co.za
campusalbano.se
captainsit.co.za
dev.admin.castersociety.com
cebubestcarrental.com
www.chairmassage.work
www.chiesadanneale.it
app.clariti.com
www.clinicabaependi.com
code2txt.com
www.coinfactory.dk
console.visionauto.com.my
ekomax.com.my
dev.redquest.croix-rouge.fr
webapp.dailybreadapp.com
prohealth.deltaconnexion.com
sitter.dogstays.lu
donachicapizzaria.com.br
www.easingapps.com
taskers.ecosystem.co.uk
inc.cuej.edu.mx
milifestyle.eduswitch.com
emanistanton.com
favemoji.com
firebaseconsultant.com
staging.flyorka.com
grappevalley.com.br
goms2.greenteg.com
gtpninja.com
www.guitarwag.com
funwithai.harshpatel.ca
herylopez.com
hobbysoft.app
www.housebook.io
invorst.com
www.iomicsanalysis.com
jamiegilmartin.com
blog.javinf.com
jennifernip.com
www.jensmdriller.com
jmhcs.com
justinematthews.com
justinjoyn.com
kano-d.com
interview-staging.karla.ai
www.kesskitchen.com
konkanroute.com
langkatoken.com
lenswindow.com
www.majlisqatarllshabab.com
margpe.com
maxxus.rs
meetyourmeow.com
mounikakamsaliveera.com
www.munich.school
myhappyprogram.com
applinks.mykindred.co
news.nepsesharehub.com
www.nneuid.com
orgs.novorpm.com
on-sen.jp
www.orderandeatnow.com.au
ouchiacademy.co.jp
ozcelikgeridonusum.com
mt.pbc-union-wien.at
www.planningpokerintheaftertimes.com
www.ponziverso.com
puels.io
pyramisingenieria.com
www.rencontres-gourmandes-pornichet.fr
reyontech.com
www.sarahpyle.xyz
msqc.scaleupconsulting.com.au
home.shandukani.com
dev.skateday.jp
subbdue.com
www.dev.app.traindoo.io
tryspicehut.com
twolions.co
app-dev.unilytics.ai
app-stage.unilytics.ai
www.vivuchi.love
vteam.com
wesmarks.art
www.yinwod.com
yoinknft.com
lp.yyc.co.jp
Other domains in certificate