SSL Certificate Analysis for random.melleby.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Certificate Information

Subject

CN=rgvcay8.mom

Issuer

C=US, O=Let's Encrypt, CN=R12

Valid From

January 11, 2026

Valid Until

April 11, 2026 68 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

02:D3:A2:40:85:B0:F8:36:67:10:DD:93:9D:B2:B2:8F:30:78:8E:D8:B3:CD:ED:72:6E:CC:CC:2E:76:87:B1:0E

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

melleby.com *.melleby.com *.m.melleby.com *.random.melleby.com *.users.melleby.com *.ww38.melleby.com

Other domains in certificate

*.bnmtdqipoc.k-oo.shop *.bw0ywez5c5ued.k-oo.shop *.dev.k-oo.shop *.ge43ns.k-oo.shop k-oo.shop *.k-oo.shop *.ww16.k-oo.shop *.ww25.k-oo.shop *.ww38.k-oo.shop *.xwimuqh.k-oo.shop

ledapol.de *.ledapol.de

*.13427ad0-6320-413e-be27-d1d88fd372e0.perdoski.org *.awkhzsmtp.perdoski.org *.beta.perdoski.org *.cpcontacts.perdoski.org *.mail.perdoski.org *.ns1.perdoski.org *.ns2.perdoski.org *.old.perdoski.org *.p2kb.perdoski.org perdoski.org *.perdoski.org *.sitemap.perdoski.org *.smtp.perdoski.org *.v1.perdoski.org *.www.perdoski.org

*.kh8s4z.rgvcay8.mom rgvcay8.mom *.rgvcay8.mom

*.aomqrb.seiryuusou.com *.atzvbd.seiryuusou.com *.avpazs.seiryuusou.com *.ciszhn.seiryuusou.com *.empjti.seiryuusou.com *.gdrqbh.seiryuusou.com *.gsjnqr.seiryuusou.com *.jjpeoy.seiryuusou.com *.lm.seiryuusou.com *.naxlkp.seiryuusou.com *.okccnj.seiryuusou.com *.qcicyz.seiryuusou.com *.random.seiryuusou.com seiryuusou.com *.seiryuusou.com *.uls.seiryuusou.com *.vku.seiryuusou.com *.www.seiryuusou.com *.yzurhb.seiryuusou.com

vcams.net *.vcams.net *.wildcard.vcams.net *.ww38.vcams.net

verification-code.info *.verification-code.info *.ww38.verification-code.info

*.admin.washingtonhospitalcenter.org *.hostmaster.washingtonhospitalcenter.org *.hr.washingtonhospitalcenter.org *.sitemaps.washingtonhospitalcenter.org washingtonhospitalcenter.org *.washingtonhospitalcenter.org *.ww25.washingtonhospitalcenter.org *.ww38.washingtonhospitalcenter.org *.www.washingtonhospitalcenter.org

watfbc.org *.watfbc.org *.ww38.watfbc.org

workshoes.store *.workshoes.store *.ww38.workshoes.store

*.wildcard.wuwuxia33.cc wuwuxia33.cc *.wuwuxia33.cc *.ww25.wuwuxia33.cc *.ww38.wuwuxia33.cc

*.ww38.wwwnaturgy.es wwwnaturgy.es *.wwwnaturgy.es

*.billing.xerohosts.com *.status.xerohosts.com *.ww38.xerohosts.com xerohosts.com *.xerohosts.com