DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=dostco.com
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
December 28, 2025
Valid Until
March 28, 2026 43 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
BA:E5:F0:C7:BF:B6:44:E7:D2:05:B3:3F:D7:ED:AF:08:63:BF:98:D5:1E:75:E4:5F:C1:BD:8B:82:3D:0D:ED:7B
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
plice.uk *.plice.uk *.cnc.plice.uk

Other domains in certificate

ayu-chosa.net *.ayu-chosa.net
biblitotheek.be *.biblitotheek.be
cl099.com *.cl099.com
*.a.clado.info clado.info *.clado.info
cluby4.us *.cluby4.us
*.api.dandydesigns.shop *.app.dandydesigns.shop *.boss.dandydesigns.shop dandydesigns.shop *.dandydesigns.shop *.dev.dandydesigns.shop *.ftp.dandydesigns.shop *.home.dandydesigns.shop *.m.dandydesigns.shop *.mobile.dandydesigns.shop *.news.dandydesigns.shop *.pop.dandydesigns.shop *.random.dandydesigns.shop *.sitemap.dandydesigns.shop *.sitemaps.dandydesigns.shop *.wap.dandydesigns.shop *.web.dandydesigns.shop *.ww25.dandydesigns.shop *.www.dandydesigns.shop
digitalbroadband.com *.digitalbroadband.com
dostco.com *.dostco.com *.random.dostco.com
evale-mode.at *.evale-mode.at
hobbyplace.io *.hobbyplace.io
maria-makri.at *.maria-makri.at
mathstudynetwork.com *.mathstudynetwork.com *.sitemap.mathstudynetwork.com
michaelmcbroom.com *.michaelmcbroom.com *.remote.michaelmcbroom.com
om-tel.info *.om-tel.info
om1.au *.om1.au
pillz888.com *.pillz888.com *.random.pillz888.com
*.hostmaster.prettylittlthing.com prettylittlthing.com *.prettylittlthing.com *.random.prettylittlthing.com
saoap2day.cc *.saoap2day.cc
sinocle.info *.sinocle.info
sirayvahorganicthaicuisinesc.com *.sirayvahorganicthaicuisinesc.com
*.co.skechees.com skechees.com *.skechees.com
*.random.strandhairstudio.com strandhairstudio.com *.strandhairstudio.com
*.app.sumday.de *.staging.sumday.de *.store.sumday.de sumday.de *.sumday.de *.test.sumday.de
*.random.trulyscrumptiouspoulton.com trulyscrumptiouspoulton.com *.trulyscrumptiouspoulton.com
*.data.tv25.bio *.server.tv25.bio tv25.bio *.tv25.bio *.ww25.tv25.bio
yesflix.live *.yesflix.live