SSL Certificate Analysis for mailer.prepackagedvacations.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=ecommercereseller.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 02, 2026

Valid Until

July 31, 2026 76 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

50:5F:80:8B:7A:10:B3:AF:76:DD:EB:B4:A8:13:4C:76:CD:AF:54:D9:41:EB:4A:D4:54:88:D4:81:82:7C:7F:15

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

prepackagedvacations.com *.prepackagedvacations.com *.dev.prepackagedvacations.com *.mailer.prepackagedvacations.com *.qa.prepackagedvacations.com

Other domains in certificate

91free7.buzz *.91free7.buzz

9qtm.com *.9qtm.com *.vpn.9qtm.com *.www.9qtm.com

andata.it *.andata.it *.dashboard.andata.it *.data.andata.it *.emailraccom.andata.it *.forecast.andata.it *.internal.andata.it *.wwww.andata.it

australianvisarefusal.com.au *.australianvisarefusal.com.au

*.252co.bandun.com.cn *.3g.bandun.com.cn bandun.com.cn *.bandun.com.cn *.cq.bandun.com.cn *.m.bandun.com.cn *.mc.bandun.com.cn *.open.bandun.com.cn *.q5ibx7.bandun.com.cn *.share.bandun.com.cn *.tuku.bandun.com.cn *.wap.bandun.com.cn *.yuedu.bandun.com.cn

*.32.com-owa.xin com-owa.xin *.com-owa.xin

*.a0151d6e-2f9d-4271-a6f5-08f890d4dc70.diart.studio diart.studio *.diart.studio *.m.diart.studio *.mail.diart.studio

*.beta.dubaiholidayrental.com dubaiholidayrental.com *.dubaiholidayrental.com *.m.dubaiholidayrental.com *.new.dubaiholidayrental.com *.test.dubaiholidayrental.com *.wvzftnec.dubaiholidayrental.com

ecommercereseller.com *.ecommercereseller.com *.host.ecommercereseller.com

electionpolls.com.au *.electionpolls.com.au

esbet201.com *.esbet201.com *.ws1.esbet201.com

*.autoconfig.rujflmcil.site *.cpanel.rujflmcil.site rujflmcil.site *.rujflmcil.site

tasting.live *.tasting.live *.webmail.tasting.live

*.b01.tcfrontenac.org tcfrontenac.org *.tcfrontenac.org

*.hostmaster.theclearcollar.com theclearcollar.com *.theclearcollar.com *.www.theclearcollar.com

*.random.transactions.au transactions.au *.transactions.au

*.app.v-r.in *.hostmaster.v-r.in v-r.in *.v-r.in

vizagstudent.com *.vizagstudent.com *.www.vizagstudent.com

wholesecrets.com *.wholesecrets.com

yashmarathon.com *.yashmarathon.com

ytdo7zq7.click *.ytdo7zq7.click

*.s.yuvjt.software yuvjt.software *.yuvjt.software