Open
Cached
·
just now
75/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=www.zendium.fi
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 17, 2026
Valid Until
July 16, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
FD:42:E4:DA:4D:BF:0F:20:9B:4C:BF:DE:41:33:4D:C2:77:DE:35:D2:0E:EE:16:89:CF:AD:00:D8:1D:3E:1A:F5
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
98 domains
my.benjerry.com
qa-retail.benjerry.com
scoopshops-au.benjerry.com
scoopshops-br.benjerry.com
scoopshops-de.benjerry.com
scoopshops-my.benjerry.com
scoopshops-nl.benjerry.com
scoopshops-nz.benjerry.com
scoopshops-sg.benjerry.com
scoopshops-uk.benjerry.com
www.ahcbeautyvirtualspa.com
www.algida.cz
www.algida.hu
www.allthingshair.co.za
www.arisco.com.br
preferences.bango.co.id
qa.ben-jerrys.es
uat.ben-jerrys.es
www.bertollismaslem.cz
www.breyers.pl
dev.chaquerepascompte.com
uat.chaquerepascompte.com
www.chaquerepascompte.com
breakinglimits.degreedeodorant.com
www.emergebeautiful.com
www.frigorestauracion.com
2019.hellmanns.com.mx
preferences.horlicks.com.my
preferences.horlicks.in
www.iubesteinghetata.ro
www.knorr.co.za
2019.knorr.com.mx
www.lesnoibalzam.ua
preferences.luxstyle.pk
www.mahaythi.com.mm
www.masterphilippines.com.ph
www.miraa.me
www.neutral.ee
www.persil.co.uk
www.rantiddao.com
preferences.br.recepedia.com
www.seventhgeneration.my
stage.shop-persil.co.uk
www.shop-persil.co.uk
breakinglimits.suredeodorant.co.uk
www.unilever-pro-nutrition-sante.fr
aws14pd.dms-offline.unilever.com
aws15pd.dms-offline.unilever.com
aws24pd.dms-offline.unilever.com
azidhpp.dms-offline.unilever.com
azidhql.dms-offline.unilever.com
azidipp.dms-offline.unilever.com
azidiql.dms-offline.unilever.com
azidupp.dms-offline.unilever.com
cspcockpit.unilever.com
designx-qa.unilever.com
designx.unilever.com
idhpp.dms-offline.unilever.com
idhql.dms-offline.unilever.com
idipp.dms-offline.unilever.com
idiql.dms-offline.unilever.com
idupp.dms-offline.unilever.com
iduql.dms-offline.unilever.com
irihc.unilever.com
livewire.unilever.com
mypp.dms-offline.unilever.com
qa.helix.unilever.com
sagex3-qa-emda.unilever.com
salttest.unilever.com
sonar-test.unilever.com
uol-maint.unilever.com
wiop-api.unilever.com
wiop-qa.unilever.com
wiop.unilever.com
lbc.unileverfoodsolutions.tw
dev-tpm-aar01.cd.unileverservices.com
dev-tpm-aar02.cd.unileverservices.com
dev-tpm-eur021.cd.unileverservices.com
dev-tpm-eur024.cd.unileverservices.com
lqa-tpm-aar01.cd.unileverservices.com
lqa-tpm-aar02.cd.unileverservices.com
lqa-tpm-eur021.cd.unileverservices.com
lqa-tpm-eur024.cd.unileverservices.com
ppd-tpm-aar01.cd.unileverservices.com
ppd-tpm-eur012.cd.unileverservices.com
ppd-tpm-eur02.cd.unileverservices.com
prd-tpm-ams01.cd.unileverservices.com
prd-tpm-eur02.cd.unileverservices.com
sqa-tpm-ams01.cd.unileverservices.com
sqa-tpm-eur021.cd.unileverservices.com
nutrimeter-api.unileversolutions.com
www.uukpf.co.uk
healingproject.vaseline.com.bd
www.vaseline.com.my
www.vaseline.ph
preferences-be-fr.yulaenergy.com
preferences-be-nl.yulaenergy.com
www.zendium.fi
Other domains in certificate