SSL Certificate Analysis for random.boboras.com - Security Grade & TLS Configuration | DNS Gurus

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=chino.bio

Issuer

C=US, O=Let's Encrypt, CN=R13

Valid From

February 03, 2026

Valid Until

May 04, 2026 85 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

80:6F:0D:A2:66:3B:A1:AE:C4:33:FE:47:9E:4A:77:D5:C7:49:1B:F0:0A:63:59:79:BA:6A:5F:47:76:F2:33:A1

Alternative Names

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains

boboras.com *.boboras.com

Other domains in certificate

aashiyana.biz *.aashiyana.biz

boatownersclub.com *.boatownersclub.com

boisetchiffons.com *.boisetchiffons.com

*.analytic.chino.bio chino.bio *.chino.bio *.development.chino.bio *.insight-sandbox.chino.bio *.preview.chino.bio

digitalnirmal.site *.digitalnirmal.site

evoamp.xyz *.evoamp.xyz *.webdisk.evoamp.xyz *.ww25.evoamp.xyz *.ww38.evoamp.xyz

exella.tech *.exella.tech

ggundam.biz *.ggundam.biz

*.admin.golden-chance.com *.apps.golden-chance.com *.citrix.golden-chance.com *.click.golden-chance.com *.cpanel.golden-chance.com golden-chance.com *.golden-chance.com *.gw.golden-chance.com *.intranet.golden-chance.com *.m.golden-chance.com *.mautic.golden-chance.com *.online.golden-chance.com *.ra.golden-chance.com *.rd.golden-chance.com *.rdg.golden-chance.com *.remoto.golden-chance.com *.shop.golden-chance.com *.sslvpn.golden-chance.com *.ts.golden-chance.com *.wap.golden-chance.com *.web.golden-chance.com *.webmail.golden-chance.com *.www.golden-chance.com

*.asiandinner.howtocrafts.online *.autos.howtocrafts.online *.avocadosalad.howtocrafts.online *.baby.howtocrafts.online *.deco.howtocrafts.online *.detox.howtocrafts.online *.detoxplan.howtocrafts.online *.diy.howtocrafts.online *.fairygarden.howtocrafts.online *.food.howtocrafts.online *.fruitcarving.howtocrafts.online *.furniture.howtocrafts.online *.garden.howtocrafts.online *.gateauu.howtocrafts.online *.haus.howtocrafts.online howtocrafts.online *.howtocrafts.online *.pumpkin.howtocrafts.online *.quilling.howtocrafts.online *.wintergaladecor.howtocrafts.online *.wood.howtocrafts.online

productsreview.live *.productsreview.live

*.11moskva.spirt-farm.site *.15moskva.spirt-farm.site *.26moskva.spirt-farm.site *.2chelyabinsk.spirt-farm.site *.2krasnoyarsk.spirt-farm.site *.2novosibirsk.spirt-farm.site *.2perm.spirt-farm.site *.2sankt-peterburg.spirt-farm.site *.2ufa.spirt-farm.site *.30moskva.spirt-farm.site *.ekaterinburg.spirt-farm.site *.kazan.spirt-farm.site *.moskva.spirt-farm.site *.novosibirsk.spirt-farm.site *.omsk.spirt-farm.site spirt-farm.site *.spirt-farm.site *.volgograd.spirt-farm.site