Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=lovingnature.org
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
May 25, 2026
Valid Until
August 23, 2026
75 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
0D:15:CE:57:FF:42:72:0F:8A:08:38:2E:08:B4:E3:49:57:31:D3:8B:42:7B:29:C8:83:64:10:EC:64:E9:31:AB
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
lovingnature.org
*.lovingnature.org
*.ajitacreative.lovingnature.org
*.cangcing.lovingnature.org
*.cpanel.lovingnature.org
*.mail.lovingnature.org
clha29.com
*.clha29.com
clha4d.com
*.clha4d.com
confluir.lat
*.confluir.lat
deepfinai.com
*.deepfinai.com
*.cdn.dewaasiavip.com
dewaasiavip.com
*.dewaasiavip.com
*.insight.dewaasiavip.com
*.media.dewaasiavip.com
*.mysql.dewaasiavip.com
dotonline.info
*.dotonline.info
enlabutaca.com
*.enlabutaca.com
exoticbodypiercing.com.au
*.exoticbodypiercing.com.au
*.hostmaster.exoticbodypiercing.com.au
*.random.exoticbodypiercing.com.au
*.w.exoticbodypiercing.com.au
*.www.exoticbodypiercing.com.au
firesticks.org
*.firesticks.org
foreverstrongmovie.com
*.foreverstrongmovie.com
freehypnosisscripts.com.au
*.freehypnosisscripts.com.au
generating.com.au
*.generating.com.au
goodfirms.au
*.goodfirms.au
*.linkedin.goodfirms.au
*.random.goodfirms.au
jiepaicn.club
*.jiepaicn.club
knowyourhorse.com.au
*.knowyourhorse.com.au
*.knowyourhorse.knowyourhorse.com.au
*.trading.knowyourhorse.com.au
kupit-cheki.club
*.kupit-cheki.club
landkamp.de
*.landkamp.de
lenovoph.com
*.lenovoph.com
livedrawchina.me
*.livedrawchina.me
*.mail.livedrawchina.me
*.www.livedrawchina.me
longwarry.com.au
*.longwarry.com.au
lovajewels-es.com
*.lovajewels-es.com
*.random.lovajewels-es.com
*.ww25.lovajewels-es.com
marshallvn.store
*.marshallvn.store
*.escwww.melbourneelectrician.com.au
melbourneelectrician.com.au
*.melbourneelectrician.com.au
miamiflorida.io
*.miamiflorida.io
natureandplay.com
*.natureandplay.com
*.helpdesk.onlinetutoringworld.com
onlinetutoringworld.com
*.onlinetutoringworld.com
parkdns.com
*.parkdns.com
pktcalltaxi.co
*.pktcalltaxi.co
provia-climatechange.org
*.provia-climatechange.org
rexiste.org
*.rexiste.org
safetyadvisors.com.au
*.safetyadvisors.com.au
safetyandhealth.com.au
*.safetyandhealth.com.au
thetoasttavern.com
*.thetoasttavern.com
Other domains in certificate