DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=olhos.com
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
February 06, 2026
Valid Until
May 07, 2026 87 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:96:6C:7B:A6:AC:E4:32:49:70:B6:43:1D:88:5E:11:8E:49:AC:FC:76:AB:C0:82:52:B9:31:39:66:DB:4A:B4
Alternative Names
90 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains
norlander.com *.norlander.com *.admin.norlander.com *.autodiscover.norlander.com *.cisco.norlander.com *.ciscovpn.norlander.com *.connect.norlander.com *.cpcontacts.norlander.com *.drvpn.norlander.com *.exmb1.norlander.com *.ftp.norlander.com *.imap.norlander.com *.m.norlander.com *.mail5.norlander.com *.mailgate.norlander.com *.mailgw.norlander.com *.openpgpkey.norlander.com *.ra.norlander.com *.ravpn.norlander.com *.relay.norlander.com *.secure2.norlander.com *.sslvpn.norlander.com *.test.norlander.com *.webmail2.norlander.com

Other domains in certificate

*.dev.eternitypr.net eternitypr.net *.eternitypr.net *.www.eternitypr.net
*.ffffffffffff.leucadia.net leucadia.net *.leucadia.net *.mail.leucadia.net *.visual.leucadia.net *.vpn.leucadia.net *.whm.leucadia.net *.wildcard.leucadia.net
*.admin.marketingprofit.com *.api.marketingprofit.com *.assets.marketingprofit.com *.backup.marketingprofit.com *.demo.marketingprofit.com *.dev.marketingprofit.com *.m.marketingprofit.com marketingprofit.com *.marketingprofit.com *.members.marketingprofit.com *.sitemaps.marketingprofit.com *.staging.marketingprofit.com *.test.marketingprofit.com *.wildcard.marketingprofit.com
*.azure2.olhos.com *.contorno.olhos.com *.de.olhos.com *.delinear.olhos.com *.desktops1.olhos.com *.desktops2.olhos.com *.dos.olhos.com *.esfumar.olhos.com *.meus.olhos.com olhos.com *.olhos.com *.remote1.olhos.com *.sslvpn2.olhos.com *.ts.olhos.com *.vpn-portal.olhos.com *.vpn2.olhos.com *.web.olhos.com *.ww1.olhos.com
*.admin.thirtyonebags.com *.api.thirtyonebags.com *.app.thirtyonebags.com *.apps.thirtyonebags.com *.connect.thirtyonebags.com *.gateway.thirtyonebags.com *.gestion.thirtyonebags.com *.m.thirtyonebags.com *.portal.thirtyonebags.com *.ra.thirtyonebags.com *.rds.thirtyonebags.com *.rdweb.thirtyonebags.com *.remote.thirtyonebags.com *.remoto.thirtyonebags.com *.secure.thirtyonebags.com *.ssl.thirtyonebags.com thirtyonebags.com *.thirtyonebags.com *.vpn1.thirtyonebags.com *.vpn2.thirtyonebags.com *.webshop.thirtyonebags.com *.webvpn.thirtyonebags.com