Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=dolceartigianale.it
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 13, 2026
Valid Until
May 14, 2026
89 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F8:0D:A7:44:89:38:9A:2E:D7:5C:3A:D5:1C:AA:39:50:9D:1B:B8:50:AF:D5:79:10:F2:A0:29:FE:1F:DF:52:C1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
settledowndontsettle.com
*.settledowndontsettle.com
86001.pizza
*.86001.pizza
*.app.dolceartigianale.it
dolceartigianale.it
*.dolceartigianale.it
hamptonconservatories.com
*.hamptonconservatories.com
*.random.hamptonconservatories.com
*.ww38.hamptonconservatories.com
*.chikushino.hukuoka.jp
*.city.hukuoka.jp
*.cityyame.hukuoka.jp
*.hisayama.hukuoka.jp
hukuoka.jp
*.hukuoka.jp
*.kurume.hukuoka.jp
*.pref.hukuoka.jp
*.random.hukuoka.jp
*.utsu.hukuoka.jp
*.wakamiya.hukuoka.jp
*.yakamiya.hukuoka.jp
*.yame.hukuoka.jp
*.yanagawa.hukuoka.jp
*.yoshii.hukuoka.jp
*.yukuhashi.hukuoka.jp
inaddition.it
*.inaddition.it
*.intelligence.inaddition.it
*.p.inaddition.it
*.demo.jogn.de
jogn.de
*.jogn.de
limetorents.cc
*.limetorents.cc
*.random.limetorents.cc
*.ww16.limetorents.cc
*.ww25.limetorents.cc
*.art.luxresort.online
*.auth.luxresort.online
*.dns.luxresort.online
*.eml.luxresort.online
luxresort.online
*.luxresort.online
*.mail12.luxresort.online
*.mail3.luxresort.online
*.mail6.luxresort.online
*.mailgate.luxresort.online
*.mailsrv.luxresort.online
*.ms.luxresort.online
*.mx3.luxresort.online
*.mx4.luxresort.online
*.mxs.luxresort.online
*.newmail.luxresort.online
*.outmail.luxresort.online
*.po.luxresort.online
*.post.luxresort.online
*.relay.luxresort.online
*.relay2.luxresort.online
*.seed.luxresort.online
*.smtpseguro.luxresort.online
*.ssl.luxresort.online
*.tiger.luxresort.online
*.zmail.luxresort.online
*.nieuw.omiagi.com
omiagi.com
*.omiagi.com
parkingchargepayments.com
*.parkingchargepayments.com
*.assets.pastebits.com
*.bitetooth.pastebits.com
pastebits.com
*.pastebits.com
*.kmtomiles.randomdecider.com
randomdecider.com
*.randomdecider.com
*.api.saleny.com
*.app.saleny.com
*.assets.saleny.com
*.demo.saleny.com
*.dev.saleny.com
*.gateway.saleny.com
*.m.saleny.com
*.rlzpords.saleny.com
saleny.com
*.saleny.com
*.shop.saleny.com
*.sitemap.saleny.com
*.test.saleny.com
Other domains in certificate