SSL Certificate Analysis for recipesvio.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=recipesvio.com

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 04, 2026

Valid Until

September 02, 2026 89 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

65:5A:AC:03:9E:9A:FD:A9:C0:C6:31:A2:EB:7B:B5:B8:4B:A5:19:DE:84:4D:DD:59:01:46:D2:4F:66:27:47:81

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

recipesvio.com *.recipesvio.com

Other domains in certificate

*.api.carandcity.it *.backend.carandcity.it carandcity.it *.carandcity.it *.dev.carandcity.it *.hostmaster.carandcity.it *.www.carandcity.it

chickennfishsystem.com.au *.chickennfishsystem.com.au

*.accounts.evenal.com *.alpha.evenal.com evenal.com *.evenal.com *.hostmaster.evenal.com

ezhookups.us *.ezhookups.us *.ww25.ezhookups.us

farai.it *.farai.it

filerun.co *.filerun.co *.random.filerun.co

*.blog.hanseativbank.de hanseativbank.de *.hanseativbank.de *.meine.hanseativbank.de *.securebanking.hanseativbank.de

impmm15.com *.impmm15.com *.nav.impmm15.com

liquorlicences.com.au *.liquorlicences.com.au *.random.liquorlicences.com.au

ly5fddyf.com *.ly5fddyf.com *.ww16.ly5fddyf.com

*.help.melbournecheapestcar.com.au melbournecheapestcar.com.au *.melbournecheapestcar.com.au *.ww17.melbournecheapestcar.com.au

*.mail.mmog-welt.de mmog-welt.de *.mmog-welt.de

mymysticaquariumphotos.com *.mymysticaquariumphotos.com *.ww16.mymysticaquariumphotos.com

*.cname7.pdbbogophx.net *.f66a0315d5.pdbbogophx.net pdbbogophx.net *.pdbbogophx.net *.ww38.pdbbogophx.net

ply.bet *.ply.bet

*.acutfafa12.possiblewedding.com *.amagistory.possiblewedding.com *.api.possiblewedding.com *.badenyawiji.possiblewedding.com *.fandrifoundhisangel.possiblewedding.com *.hi.possiblewedding.com *.inv.possiblewedding.com *.its.possiblewedding.com *.my.possiblewedding.com *.on.possiblewedding.com possiblewedding.com *.possiblewedding.com *.sklkl.possiblewedding.com *.the.possiblewedding.com

surgeserver.co *.surgeserver.co

tickle.style *.tickle.style *.ww16.tickle.style *.ww25.tickle.style *.www2.tickle.style

*.mail2.titangel.me titangel.me *.titangel.me

*.colemancollection.watches.com.au watches.com.au *.watches.com.au

yoonflower.net *.yoonflower.net

*.backend.yourbusinesspartner.it *.chart.yourbusinesspartner.it *.demo.yourbusinesspartner.it *.superset.yourbusinesspartner.it yourbusinesspartner.it *.yourbusinesspartner.it