SSL Certificate Analysis for mx.adei.it - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=jovago.com

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

April 30, 2026

Valid Until

July 29, 2026 78 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

E7:86:FA:DF:18:38:11:F0:A2:05:9E:2B:99:76:5C:2C:21:BB:43:C1:C5:6E:80:14:98:62:FA:D4:ED:67:A3:8D

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

adei.it *.adei.it *.backend.adei.it *.bi.adei.it *.dashboard.adei.it *.data.adei.it *.exchange.adei.it *.exchangecorp.adei.it *.exchmail.adei.it *.metric.adei.it *.mx.adei.it *.mymail.adei.it *.newmail2013.adei.it *.notexistssmtp.adei.it *.random.adei.it *.smail.adei.it *.visual.adei.it

Other domains in certificate

billyjoe.it *.billyjoe.it *.cpanel.billyjoe.it *.demo.billyjoe.it *.mail.billyjoe.it *.mailin.billyjoe.it *.webdisk.billyjoe.it *.webmail.billyjoe.it

*.api.brothersgas.me brothersgas.me *.brothersgas.me

*.com.cortorama.com cortorama.com *.cortorama.com *.es.cortorama.com *.org.cortorama.com *.paidmembershippro.cortorama.com *.pruebaborrar.cortorama.com *.test.cortorama.com

*.app.easysearch.click easysearch.click *.easysearch.click *.go.easysearch.click

glowspherebeauty.store *.glowspherebeauty.store *.www.glowspherebeauty.store

goctruyentranhvui6.com *.goctruyentranhvui6.com *.ww38.goctruyentranhvui6.com

icool.games *.icool.games *.m.icool.games

*.campaign.jovago.com *.exacttarget.jovago.com *.fr.jovago.com *.info.jovago.com *.intcf.jovago.com jovago.com *.jovago.com *.ng.jovago.com *.pk.jovago.com *.staging2-admin.jovago.com

nortonvaultlogin.com *.nortonvaultlogin.com

objectivofama.net *.objectivofama.net *.rykb0ammxs.objectivofama.net

*.ns1.oncasino.site oncasino.site *.oncasino.site *.www.oncasino.site

*.mail.ovenadventure.com ovenadventure.com *.ovenadventure.com

*.anyconnect.recycler.it *.asavpn.recycler.it *.connect.recycler.it *.email.recycler.it *.heip.recycler.it *.i.recycler.it *.khapps.recycler.it *.portal.recycler.it recycler.it *.recycler.it

*.in.rola.in *.msitemaps.rola.in *.ns1.rola.in *.primary.rola.in rola.in *.rola.in *.sitemaps.rola.in

vf-stream.biz *.vf-stream.biz