Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=fenghuanglingyuan.com.cn
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
April 04, 2026
Valid Until
July 03, 2026
36 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
65:BA:4E:65:16:1A:63:2E:C6:47:40:6D:8B:26:5E:5B:D1:33:FA:91:B7:7B:D6:DF:C2:82:9C:0F:43:3E:E2:79
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
ohsug.org
*.ohsug.org
*.drupaldev.ohsug.org
*.ftp.ohsug.org
*.m.ohsug.org
*.mail.ohsug.org
*.mta-sts.ohsug.org
*.ns1.ohsug.org
*.ns2.ohsug.org
*.portal.ohsug.org
chemtextbook.com
*.chemtextbook.com
*.webdisk.chemtextbook.com
*.ww25.chemtextbook.com
dedicatedsite.it
*.dedicatedsite.it
*.dev.dedicatedsite.it
*.webmail.dedicatedsite.it
*.developer.dma-partners.de
dma-partners.de
*.dma-partners.de
*.f3zhv.fenghuanglingyuan.com.cn
fenghuanglingyuan.com.cn
*.fenghuanglingyuan.com.cn
*.iu8gn.fenghuanglingyuan.com.cn
*.ns2a8.fenghuanglingyuan.com.cn
*.ssggl.fenghuanglingyuan.com.cn
flowercall.com
*.flowercall.com
*.test.flowercall.com
growthpros.ca
*.growthpros.ca
*.m.growthpros.ca
*.old.growthpros.ca
*.ww11.growthpros.ca
*.ww12.growthpros.ca
*.ww7.growthpros.ca
holaphukettour.com
*.holaphukettour.com
lakespivey.net
*.lakespivey.net
leonsmusiccafe.com
*.leonsmusiccafe.com
*.www.leonsmusiccafe.com
*.iris.momentumleasing.com
momentumleasing.com
*.momentumleasing.com
regeneratecells.com
*.regeneratecells.com
*.upload.regeneratecells.com
*.ww25.regeneratecells.com
*.mx.sunlfe.com
sunlfe.com
*.sunlfe.com
*.www.sunlfe.com
*.38147e3e-cc8b-4c0d-9303-cff8d8152a51.sunlight.university
*.60d3c84f-64cf-4258-8bc4-9d7ddc27138e.sunlight.university
*.66b21fff-0aca-4fbd-8eaa-06d691fd2a83.sunlight.university
*.admin.sunlight.university
*.alpha.sunlight.university
*.app.sunlight.university
*.dashboard.sunlight.university
*.fbc7fa8d-bc81-4959-8b35-8cc971dc18c3.sunlight.university
*.hostmaster.sunlight.university
*.mail.sunlight.university
*.mailer.sunlight.university
*.new.sunlight.university
*.promo.sunlight.university
*.secure.sunlight.university
*.stg.sunlight.university
sunlight.university
*.sunlight.university
*.swvehstg.sunlight.university
*.v1.sunlight.university
*.web.sunlight.university
*.www.sunlight.university
teen-leak3.cc
*.teen-leak3.cc
*.ww25.teen-leak3.cc
*.2dbks.travelvoyagesecrets.xyz
*.39ir6.travelvoyagesecrets.xyz
*.civoh.travelvoyagesecrets.xyz
*.kwid9.travelvoyagesecrets.xyz
travelvoyagesecrets.xyz
*.travelvoyagesecrets.xyz
*.v6j6e.travelvoyagesecrets.xyz
*.z4gbs.travelvoyagesecrets.xyz
*.www.zkpgaming.com
zkpgaming.com
*.zkpgaming.com
Other domains in certificate