SSL Certificate Analysis for mail01.zingvn.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=awol.studio

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 19, 2026

Valid Until

September 17, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

B0:C4:2D:73:6D:1A:5B:A7:19:F5:34:08:1E:2C:46:1B:27:11:84:7F:82:87:0E:C9:DE:8B:12:94:D8:5B:22:16

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

zingvn.com *.zingvn.com *.mail01.zingvn.com

Other domains in certificate

7flower.co *.7flower.co *.www.7flower.co

appsgun.com *.appsgun.com

awol.studio *.awol.studio *.random.awol.studio *.ww25.awol.studio

barsecurity.au *.barsecurity.au

bartending.au *.bartending.au

bikedesks.au *.bikedesks.au

bikeracing.au *.bikeracing.au

bitplanes.io *.bitplanes.io

bongdaso.life *.bongdaso.life *.sitemap.bongdaso.life *.ww25.bongdaso.life

chanelpg.com *.chanelpg.com *.ww25.chanelpg.com *.ww38.chanelpg.com

elangwo2.xyz *.elangwo2.xyz *.random.elangwo2.xyz *.ww25.elangwo2.xyz *.ww38.elangwo2.xyz

expediwebsite.com *.expediwebsite.com

*.amrita.lal.au *.kusha.lal.au lal.au *.lal.au *.ronal.lal.au *.ume.lal.au *.umesha.lal.au *.umexh.lal.au *.unaend.lal.au *.waja.lal.au

*.demo.lesmmoanel.online lesmmoanel.online *.lesmmoanel.online

*.ergob.lookmovie137.xyz lookmovie137.xyz *.lookmovie137.xyz *.metrika.lookmovie137.xyz *.servidor.lookmovie137.xyz *.www.lookmovie137.xyz

malvadinha.vip *.malvadinha.vip *.pay.malvadinha.vip

*.demo.mostofa.club *.inboxer.mostofa.club *.mail.mostofa.club mostofa.club *.mostofa.club

myappointments.co.uk *.myappointments.co.uk

seriesflv.es *.seriesflv.es

*.sitemaps.tilegrafos.com tilegrafos.com *.tilegrafos.com *.ww1.tilegrafos.com *.ww11.tilegrafos.com

*.com8.uxuretv.com *.en.uxuretv.com *.enl.uxuretv.com *.fr.uxuretv.com *.l.uxuretv.com *.les.uxuretv.com uxuretv.com *.uxuretv.com *.www.uxuretv.com

*.airflow.xrapp.site *.wildcard.xrapp.site xrapp.site *.xrapp.site

*.random.zuoz.cf zuoz.cf *.zuoz.cf