DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=luxy-dining.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
January 26, 2026
Valid Until
April 26, 2026 74 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3B:18:32:A3:7C:EB:93:42:90:B1:2C:8E:C6:F4:CC:EB:E8:4D:F3:56:DF:B3:61:E4:8F:29:22:4C:86:09:7B:1B
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
luxy-dining.com *.luxy-dining.com *.ww7.luxy-dining.com

Other domains in certificate

affordableresumeservice.com *.affordableresumeservice.com *.fargo.affordableresumeservice.com *.gilbertown.affordableresumeservice.com *.harlingen.affordableresumeservice.com *.rockford.affordableresumeservice.com *.siouxfalls.affordableresumeservice.com
atomsportv362.site *.atomsportv362.site
botoxsavings.com *.botoxsavings.com
drwillieong.site *.drwillieong.site
*.densustoto.homesweetjoy.com homesweetjoy.com *.homesweetjoy.com
kanchan-mama.xyz *.kanchan-mama.xyz
luxury-items.org *.luxury-items.org
nicepets.org *.nicepets.org
pg-games9.com *.pg-games9.com
pixeldrain.ca *.pixeldrain.ca
playlis12.online *.playlis12.online
privatevibes.site *.privatevibes.site
sparta888.me *.sparta888.me
*.anam.subhan.live *.angular.subhan.live *.anzurantpharma.subhan.live *.burger.subhan.live *.com.subhan.live *.consult.subhan.live *.demo.subhan.live *.drupal.subhan.live *.exhaul.subhan.live *.frontity.subhan.live *.joomla.subhan.live *.jun.subhan.live *.live.subhan.live *.logistics.subhan.live *.moviristic.subhan.live *.ocs.subhan.live *.penne.subhan.live *.portfolio.subhan.live *.sahhas.subhan.live *.shahlan.subhan.live *.shop.subhan.live *.store.subhan.live subhan.live *.subhan.live *.testing1.subhan.live *.the-penne.subhan.live *.thereflectionstudio.subhan.live *.uae.subhan.live *.ui.subhan.live *.ui2.subhan.live *.uk.subhan.live *.usa.subhan.live *.zeebaish.subhan.live
swam-attempt-label-growth.run *.swam-attempt-label-growth.run
*.0b848ddd-883e-4fff-af69-ab0c5a61009b.tiketon.co *.93c5-9e5fa67a1c9b.tiketon.co *.de.tiketon.co *.f47f075f-4ec6-4243-b97f-c99f67551232.tiketon.co *.mta-sts.tiketon.co *.new.tiketon.co *.ns.tiketon.co tiketon.co *.tiketon.co *.ww1.tiketon.co *.zoom.tiketon.co
*.local.tmhp-l.net tmhp-l.net *.tmhp-l.net *.us.tmhp-l.net
wa.style *.wa.style
ya9lbnd3vtppzmlasily.com *.ya9lbnd3vtppzmlasily.com