Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=campfire.ideo.com
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
October 05, 2025
Valid Until
January 03, 2026
56 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
91:DA:9B:1E:F1:52:FD:7D:45:3F:1F:2F:26:1C:DD:9E:B8:A1:65:7C:F8:60:50:9A:18:FF:36:F9:B1:FA:AA:13
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
ory-app.emporix.io
11521468.peerly.app
www.aloksi.eu
www.anglesoftheglobe.com
ankacharity.org
www.anthonytordillos.com
arasoyo.com
asbtj.eu
ewisclassroom.auxswot.com
www.kavak.bel.tr
www.besharizgar.com
link.betterhalf.ai
bhoopermarketing.com
apps.bitsila.com
www.brixacademyindia.in
caltai.site
www.carmensantoro.it
uoman-miyakohotel-kyoto.cfs-japan.com
chinatravel.help
www.chrismoroney.info
cloudcampuz.com
agropoultry.com.np
contetial.com
www.currvit.com
alpha.target.dataplace.ai
dnlnwk.de
www.e-ceos.app
godmode.easya.io
elondontsueme.com
www.enchanter.gg
links.equiem.mobi
www.ezquake.com
www.feetinchcalculator.com
filesfit.com
www.sale.forgottenchain.com
build.getbillit.com
reporting.growflow.com
www.ideas24h.com
campfire.ideo.com
www.ieepl.in
old.app.ikiteo.com
vespa.indraoctama.com
www.infinitehorizon.io
pedestriansfirst.itdp.org
jp-ventures.de
lainezimoveis.com.br
www.lankeshpatrike.in
staging.levelup.dental
luismontoya.info
m4rv1n.com
tool.madred.co
madyogi.in
maid.cafe
www.masaconoy.fi
www.measuremaponline.com
www.menupty.com
miempresapp.net
owner.minorganisation.se
mir7.de
mountainmist.in
munrol.com
dt.n1c0l4.com
photo.nbryce.com
ndcyberlaw.com
admin.nestezzy.com
tele.nestezzy.com
www.nlcorporation.in
staging.noisegrasp.com
app.nortrix.com
app.notifeyes.com
oaimstudio.com
www.oaimstudio.com
www.ohiocaregiving.com
www.online-cashbox.com
app.paarmix.com
www.pascalraszyk.de
phillipwildhirt.com
pluscrea.net
primerealestate413.com
pug888.com
calendar.raguirre.dev
record-video-online.com
reflow.engineering
reglot.com
chat.robertolegorreta.com
admin.roingapp.com
auth.apex.user.rowrock.com
sagarchasmawala.in
samarkand.co.nz
sayra3d.com
sqltraining.shopeephbi.com
sportivesportsclub.com
thecakewalk.in
www.trioyard.com
ultracss.com
unitedly.io
board.vorkis.com
demo.xhibs.com
ylwtacos.ca
yoits.me
Other domains in certificate