SSL Certificate Analysis for me.patton.me - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=srt4tv.xyz

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 03, 2026

Valid Until

July 02, 2026 30 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

0A:F5:87:11:19:90:43:E5:D8:04:C7:C1:2B:BC:6F:E5:D7:FD:38:D4:0F:1F:FD:7C:91:6A:A8:E5:9E:D2:15:09

Alternative Names

76 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

76 domains

patton.me *.patton.me *.app.patton.me *.ftp.patton.me *.le.patton.me *.m.patton.me *.openpgpkey.patton.me *.remote.patton.me

Other domains in certificate

ai-transfy.com *.ai-transfy.com *.rustore.ai-transfy.com

bfv9q5nm.top *.bfv9q5nm.top *.blog.bfv9q5nm.top *.download2.bfv9q5nm.top *.srv1.bfv9q5nm.top *.user.bfv9q5nm.top

*.57e94e7e-dae2-4410-89ad-58dd44aa5164.cadobongda.info *.6e986ba1-ba0f-457f-b0b5-1dfa074cd48d.cadobongda.info *.admin.cadobongda.info *.analytics.cadobongda.info *.api.cadobongda.info *.app.cadobongda.info *.assets.cadobongda.info *.billing.cadobongda.info *.blog.cadobongda.info cadobongda.info *.cadobongda.info *.demo.cadobongda.info *.hostmaster.cadobongda.info *.m.cadobongda.info *.members.cadobongda.info *.random.cadobongda.info *.remote.cadobongda.info *.report.cadobongda.info *.skqwxassets.cadobongda.info *.staging.cadobongda.info *.test.cadobongda.info *.tracking.cadobongda.info *.wildcard.cadobongda.info *.www.cadobongda.info

holoeu.com *.holoeu.com *.m.holoeu.com

*.admin.lottagrecoromana.com *.analytics.lottagrecoromana.com *.argo.lottagrecoromana.com *.backend.lottagrecoromana.com *.dash.lottagrecoromana.com *.dashboard.lottagrecoromana.com *.dashs.lottagrecoromana.com lottagrecoromana.com *.lottagrecoromana.com *.mail.lottagrecoromana.com *.mail2.lottagrecoromana.com *.redash.lottagrecoromana.com *.staging.lottagrecoromana.com *.superset.lottagrecoromana.com

*.mail.scratchfinder.com scratchfinder.com *.scratchfinder.com

*.0afmf.srt4tv.xyz *.3nxyc.srt4tv.xyz *.3ugcn.srt4tv.xyz *.4qwa0.srt4tv.xyz *.bnbod.srt4tv.xyz *.dn930.srt4tv.xyz *.e748fe37-2b8a-47f8-ac36-f9912f131e3f.srt4tv.xyz *.eu3rm.srt4tv.xyz *.l2aa8.srt4tv.xyz *.lkzdx.srt4tv.xyz *.me7q1.srt4tv.xyz srt4tv.xyz *.srt4tv.xyz *.y6iui.srt4tv.xyz *.z44ag.srt4tv.xyz