Open
Cached
·
just now
73/100
SECURITY SCORE
Certificate Information
Subject
CN=accessibility.fpm.wisc.edu
Issuer
C=US, O=Amazon, CN=Amazon RSA 2048 M01
Valid From
October 10, 2025
Valid Until
November 08, 2026
342 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
AE:8E:43:AE:21:5C:41:80:22:FB:E3:91:DE:C8:0F:26:5A:27:40:FB:C1:24:8C:5F:E0:A9:9F:C1:E3:4E:11:D1
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
70 domains
armor.wisc.edu
biochem.wisc.edu
biotech.wisc.edu
fewscapes.wisc.edu
galaxyscouts.wisc.edu
mcevbd.wisc.edu
r3steel.wisc.edu
shall.wisc.edu
shpeuwmadison.wisc.edu
soils.wisc.edu
wsmtl.wisc.edu
*.armor.wisc.edu
*.biochem.wisc.edu
*.biotech.wisc.edu
*.fewscapes.wisc.edu
*.galaxyscouts.wisc.edu
*.mcevbd.wisc.edu
*.r3steel.wisc.edu
*.shall.wisc.edu
*.shpeuwmadison.wisc.edu
*.soils.wisc.edu
*.wsmtl.wisc.edu
accessibility.fpm.wisc.edu
am2.engr.wisc.edu
amrit.radiology.wisc.edu
av.fpm.wisc.edu
big10utilities.fpm.wisc.edu
brunold.chem.wisc.edu
cbb.labs.wisc.edu
cpd.fpm.wisc.edu
cpla.fpm.wisc.edu
crystals2molecularworld.chem.wisc.edu
development.policy.wisc.edu
ethics.journalism.wisc.edu
facilities.fpm.wisc.edu
inside.fpm.wisc.edu
kimblelab.biochem.wisc.edu
lecuyer.aos.wisc.edu
maeda.botany.wisc.edu
pikulgroup.engr.wisc.edu
plantresilience.cals.wisc.edu
presentingandwritinglab.business.wisc.edu
safdarstudies.medicine.wisc.edu
smo.fpm.wisc.edu
spanlab.csd.wisc.edu
turbulence.neep.wisc.edu
*.accessibility.fpm.wisc.edu
*.am2.engr.wisc.edu
*.amrit.radiology.wisc.edu
*.av.fpm.wisc.edu
*.big10utilities.fpm.wisc.edu
*.brunold.chem.wisc.edu
*.cbb.labs.wisc.edu
*.cpd.fpm.wisc.edu
*.cpla.fpm.wisc.edu
*.crystals2molecularworld.chem.wisc.edu
*.development.policy.wisc.edu
*.ethics.journalism.wisc.edu
*.facilities.fpm.wisc.edu
*.inside.fpm.wisc.edu
*.kimblelab.biochem.wisc.edu
*.lecuyer.aos.wisc.edu
*.maeda.botany.wisc.edu
*.pikulgroup.engr.wisc.edu
*.plantresilience.cals.wisc.edu
*.presentingandwritinglab.business.wisc.edu
*.safdarstudies.medicine.wisc.edu
*.smo.fpm.wisc.edu
*.spanlab.csd.wisc.edu
*.turbulence.neep.wisc.edu