SSL Certificate Analysis for manager.dogmatch.com.au - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=dogmatch.com.au

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

May 01, 2026

Valid Until

July 30, 2026 71 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

34:9F:9B:2C:67:B5:40:6B:B2:F8:BE:94:A7:E5:20:42:3F:6D:5F:A7:D0:A9:06:F2:B1:F7:C0:8C:20:DD:52:3D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

dogmatch.com.au *.dogmatch.com.au *.hotfix.dogmatch.com.au *.manager.dogmatch.com.au *.pm.dogmatch.com.au *.store.dogmatch.com.au *.ww16.dogmatch.com.au *.ww25.dogmatch.com.au *.ww38.dogmatch.com.au

Other domains in certificate

4son.com *.4son.com *.applications.4son.com *.cc4access.4son.com *.homework.4son.com *.login.4son.com *.ra.4son.com *.rdsgw.4son.com *.staff.4son.com

*.2l6wm.7-elevency8.cfd *.39ir6.7-elevency8.cfd 7-elevency8.cfd *.7-elevency8.cfd *.cg4o5.7-elevency8.cfd *.cuyk.7-elevency8.cfd *.ip4i2.7-elevency8.cfd *.jyikv.7-elevency8.cfd *.kac0t.7-elevency8.cfd *.l7nqb.7-elevency8.cfd *.qdiek.7-elevency8.cfd *.rczhl.7-elevency8.cfd *.rkuvx.7-elevency8.cfd *.y04uw.7-elevency8.cfd *.y6iui.7-elevency8.cfd *.yhue2.7-elevency8.cfd *.z44ag.7-elevency8.cfd

fangyuanlehaosi.cn *.fangyuanlehaosi.cn *.g0y03.fangyuanlehaosi.cn *.mg4kr.fangyuanlehaosi.cn

jusvufasq.com *.jusvufasq.com

krankenkssen.de *.krankenkssen.de

les3roses.com *.les3roses.com *.www.les3roses.com

*.asahi-kasei.profile.live *.brands.profile.live *.cid-78a18d711d5efbd4.profile.live *.cpanel.profile.live *.hostmaster.profile.live *.m.profile.live profile.live *.profile.live *.sso.profile.live *.webdisk.profile.live *.webmail.profile.live *.www.profile.live

*.connect.publix.pro *.firewall.publix.pro *.hostmaster.publix.pro *.imap.publix.pro *.mail1.publix.pro *.network.publix.pro *.no.publix.pro publix.pro *.publix.pro *.r.publix.pro *.random.publix.pro *.server5.publix.pro *.traveler.publix.pro

*.access.suterhealth.org *.bayarea.suterhealth.org *.emplyeegiving.suterhealth.org *.staging-api.suterhealth.org suterhealth.org *.suterhealth.org

tlbbdulong.com *.tlbbdulong.com

*.analytics.typeof.it *.analyze.typeof.it *.api.typeof.it *.backend.typeof.it *.demo.typeof.it *.hostmaster.typeof.it *.staging.typeof.it *.supersets.typeof.it typeof.it *.typeof.it *.www.typeof.it