Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=wine.buzz
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
March 20, 2026
Valid Until
June 18, 2026
39 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3A:D1:4E:90:40:6C:0E:9F:CC:E0:27:67:A1:47:2E:8A:DE:0D:7D:05:69:B6:85:93:46:21:1F:92:75:09:A8:B3
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
rii.de
*.rii.de
*.vica.rii.de
*.accounts.andorid.com
andorid.com
*.andorid.com
*.apk.andorid.com
*.app.andorid.com
*.partner.andorid.com
*.ww25.andorid.com
*.ww43.andorid.com
brillo.au
*.brillo.au
*.random.brillo.au
*.ww25.brillo.au
deathtofalsehoperecords.com
*.deathtofalsehoperecords.com
*.hosting.deathtofalsehoperecords.com
*.www.deathtofalsehoperecords.com
disabilityact.com
*.disabilityact.com
*.mail.disabilityact.com
*.dan.dnsscan.biz
dnsscan.biz
*.dnsscan.biz
*.hostmaster.dnsscan.biz
*.blog.excale.net
excale.net
*.excale.net
fabrics.au
*.fabrics.au
*.random.fabrics.au
*.ww25.fabrics.au
fatigueservices.com
*.fatigueservices.com
*.helpdesk.fatigueservices.com
*.random.fatigueservices.com
floridaadrc.org
*.floridaadrc.org
*.random.floridaadrc.org
formuladigital.com.au
*.formuladigital.com.au
*.mail.formuladigital.com.au
*.ww25.formuladigital.com.au
garagespace.com.au
*.garagespace.com.au
*.cqbdri.glain.com
glain.com
*.glain.com
*.glw.glain.com
*.law.glain.com
*.test.glain.com
*.jdisofttmaster.lemens.net
lemens.net
*.lemens.net
*.emv1.life-of-retirees.com
life-of-retirees.com
*.life-of-retirees.com
*.users.life-of-retirees.com
*.ww25.life-of-retirees.com
meinshiff.com
*.meinshiff.com
*.zahlung.meinshiff.com
mpog.com.au
*.mpog.com.au
pacopelletteria.com
*.pacopelletteria.com
*.ww38.pacopelletteria.com
*.www.pacopelletteria.com
paradicepoker.com
*.paradicepoker.com
*.ww25.paradicepoker.com
tiptoelane.com
*.tiptoelane.com
*.workspace.tiptoelane.com
underdogrescue.com
*.underdogrescue.com
usedtruckfinance.au
*.usedtruckfinance.au
*.crypto.wine.buzz
*.mail7.wine.buzz
*.mailgw.wine.buzz
*.mailx.wine.buzz
*.root.wine.buzz
*.smtpauth.wine.buzz
wine.buzz
*.wine.buzz
*.ww25.xxrbrb3.xyz
xxrbrb3.xyz
*.xxrbrb3.xyz
Other domains in certificate