SSL Certificate Analysis for mailserver.elecktro.com.br - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=appraiser.au

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

May 11, 2026

Valid Until

August 09, 2026 52 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

18:E1:BA:15:70:83:B2:98:BE:5F:64:DA:96:03:E5:61:16:D4:8D:4A:D1:06:A2:5F:73:B4:81:FC:E9:95:0E:49

Alternative Names

89 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

elecktro.com.br *.elecktro.com.br *.gate.elecktro.com.br *.mailserver.elecktro.com.br *.ww16.elecktro.com.br *.ww38.elecktro.com.br

Other domains in certificate

abcinteractiveaudits.com *.abcinteractiveaudits.com *.random.abcinteractiveaudits.com *.ww38.abcinteractiveaudits.com

appraiser.au *.appraiser.au

auto-kleinanzeigen.de *.auto-kleinanzeigen.de

aytube.com *.aytube.com

dessoushersteller.de *.dessoushersteller.de *.random.dessoushersteller.de

doann.com *.doann.com *.ww38.doann.com

*.dan.dotfear.com dotfear.com *.dotfear.com *.hostmaster.dotfear.com

extacy.de *.extacy.de *.random.extacy.de *.ww16.extacy.de

handeshof.de *.handeshof.de *.test.handeshof.de

jjo.au *.jjo.au *.ww38.jjo.au

kirklandminoxidiluk.co.uk *.kirklandminoxidiluk.co.uk *.ww25.kirklandminoxidiluk.co.uk

lederunterwaesche.de *.lederunterwaesche.de *.random.lederunterwaesche.de

norweigeancruise.com *.norweigeancruise.com

*.m.photobcket.com photobcket.com *.photobcket.com

*.mail.porno-xxx.top porno-xxx.top *.porno-xxx.top *.smtp.porno-xxx.top *.ww16.porno-xxx.top

*.random.robot9.com robot9.com *.robot9.com

*.analytics-qa.sinemol.biz *.beta.sinemol.biz *.dashboard.sinemol.biz *.data-ci.sinemol.biz *.emv1.sinemol.biz sinemol.biz *.sinemol.biz *.uat.sinemol.biz *.ww25.sinemol.biz *.ww38.sinemol.biz *.www.sinemol.biz

*.ci-pipeline.strameast.to *.cicd-qa.strameast.to *.cicd.strameast.to *.integration.strameast.to strameast.to *.strameast.to *.test.strameast.to *.v2.strameast.to

strickout.cc *.strickout.cc *.ww38.strickout.cc

thueringer-wurst24.de *.thueringer-wurst24.de *.www.thueringer-wurst24.de

versicherungesvergleich.de *.versicherungesvergleich.de

*.hostmaster.wolverineknifecollectorsclub.com *.mail.wolverineknifecollectorsclub.com wolverineknifecollectorsclub.com *.wolverineknifecollectorsclub.com *.www.wolverineknifecollectorsclub.com

zib.com.au *.zib.com.au