Open
Cached
·
just now
80/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
C=GB, ST=London, O=Unilever PLC, CN=webredirect9.unilever.com
Issuer
C=CA, O=Entrust Limited, CN=Entrust OV TLS Issuing RSA CA 2
Valid From
December 29, 2025
Valid Until
January 29, 2027
223 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
24:A5:08:AD:C1:91:F0:F2:1F:1E:9F:6F:A4:E8:D9:9A:9B:4C:EC:75:19:55:E1:46:45:39:60:AE:62:CF:6B:6E
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000 ; includeSubDomains ; preload
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
sirkensingtons.com
1001paris.fr
alaun-deo.de
algida.cz
algida.sk
axe.fi
www.axenordic.com
beabbqgamechanger.se
benjerry.de
www.bodysmoother.de
breyers.at
buavita.co.id
cajoline.fr
calve.es
www.cartedor.fr
cif.at
cif.com.tr
clearfunziona.it
clubligeresa.es
comfortworld.co.uk
www.comprafoodservice.com
dawn.co.za
deo-stein.de
devegetarischeslager.be
dienummerdieverbindet.at
www.dienummerdieverbindet.at
dovemencare.be
dovemencare.gr
dovemencare.sk
doveoffer.ca
doveworld.ch
www.duschdas-body-smoother.de
www.duschdas-testaktion.de
duschdas.de
duschdasalaun.de
www.duschdasmen.de
eine-nummer-die-verbindet.de
www.eine-nummer-die-verbindet.de
fluocaril.fr
freezinggood.at
www.freezinggood.ch
hellmanns.pt
www.hellmanns.sk
iubesteinghetatashop.ro
www.jeu-magnum-pot.com
knorr.com.cy
www.knorr.hu
legendbell.com
www.likkies.eu
linic.pt
liptonkitchens.com
lusso.ch
magnum.ch
www.mayoformeals.com
www.mesedellaprevenzionementadent.it
mydove.co.nz
mymadmethods.com
neutral.no
nexxushair.com
nowydove.pl
ola.pt
omolavanderiacompartilhada.com.br
onnit.university
paragonpartnerships.com
parogencyl.es
pepsodent.in
www.persil.fr
realhellmanns.dk
regeneratenr5.it
www.rexona.at
rozkrecsieztwisterem.pl
sedal.com.pe
sharehappy.com
signal-net.ch
www.signalweb.hr
skip.gr
www.surf.com
testujdovepoweredbyplants.pl
thehappinessproject.se
themagnumicecreamcompany.com.tr
ultrex.gr
uni-shop.co.uk
www.uni-shop.co.uk
unilever-arabia.com
unilever-middleamericas.com
kana.unilever.com
*.unilever.com
webredirect9.unilever.com
unilever.com.mx
unilever.digital
www.unilevercoffeevoucher.com
unileverfoodsolutions.bg
www.unileverfoodsolutions.com
unileverfoodsolutionsbaltics.com
unilevernotices.com
unox.nl
vaseline.fi
whitenow.fr
whoisonit.com
zmrzlina-misa.sk
Other domains in certificate