SSL Certificate Analysis for mail.fiverent.buzz - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=551sbc.com

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

December 13, 2025

Valid Until

March 13, 2026 46 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B9:CC:63:A5:D0:B2:1D:0F:68:B4:DF:94:9F:CA:89:F3:3E:C9:31:97:D5:DE:10:98:26:5A:1F:AD:BC:82:B3:2E

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

fiverent.buzz *.fiverent.buzz *.app.fiverent.buzz *.mail.fiverent.buzz *.sitemap.fiverent.buzz *.sitemaps.fiverent.buzz *.www.fiverent.buzz

Other domains in certificate

3pattilucky88.com *.3pattilucky88.com

*.049.551sbc.com *.1v3.551sbc.com *.479.551sbc.com 551sbc.com *.551sbc.com *.777.551sbc.com *.vlb.551sbc.com *.xnd.551sbc.com

bangass.com *.bangass.com *.facebook.bangass.com *.ww38.bangass.com *.www27.bangass.com

bdresult.xyz *.bdresult.xyz *.dm.bdresult.xyz

danielgarcialeilao.net *.danielgarcialeilao.net *.ww16.danielgarcialeilao.net *.ww38.danielgarcialeilao.net

*.d3317756d.ewyap.xyz ewyap.xyz *.ewyap.xyz *.gsipxfy.ewyap.xyz *.h053al3.ewyap.xyz *.jo6lfkr.ewyap.xyz *.l0q9g.ewyap.xyz *.o44151.ewyap.xyz *.t7.ewyap.xyz *.uv2gt.ewyap.xyz *.w0cul.ewyap.xyz *.ww25.ewyap.xyz

greenstreetclinic.co.uk *.greenstreetclinic.co.uk

hanky.online *.hanky.online *.payments.hanky.online *.random.hanky.online *.test.hanky.online

*.app.meat.pink *.dev.meat.pink *.flash.meat.pink *.home.meat.pink *.localhost.meat.pink *.m.meat.pink *.mail.meat.pink meat.pink *.meat.pink *.mobile.meat.pink *.news.meat.pink *.wap.meat.pink *.web.meat.pink *.www.meat.pink

music-radio.online *.music-radio.online

*.login.romancelove4u.online *.qwzge9.romancelove4u.online romancelove4u.online *.romancelove4u.online *.staging.romancelove4u.online *.track2.romancelove4u.online *.tracking.romancelove4u.online *.wildcard.romancelove4u.online *.ww25.romancelove4u.online

*.get.sertifly.com sertifly.com *.sertifly.com *.ww25.sertifly.com

soapertv.live *.soapertv.live

*.ads.teentitsandass.com *.nhac.teentitsandass.com *.openvpn.teentitsandass.com *.portal.teentitsandass.com teentitsandass.com *.teentitsandass.com

westbayfishingtrips.co.uk *.westbayfishingtrips.co.uk

whaplodeprimary.co.uk *.whaplodeprimary.co.uk