SSL Certificate Analysis for store.800texting.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt Active incidents

Certificate Information

Subject

CN=dotcfa.com

Issuer

C=US, O=Let's Encrypt, CN=YR1

Valid From

June 20, 2026

Valid Until

September 18, 2026 84 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

8E:CF:EE:DD:B8:30:4D:2A:A7:29:28:E0:94:55:4C:9B:FB:C8:B1:A3:30:D7:08:46:33:1B:3B:44:8C:80:49:D7

Alternative Names

90 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

90 domains

800texting.com *.800texting.com *.demo.800texting.com *.forums.800texting.com *.my.800texting.com *.old.800texting.com *.store.800texting.com *.temp.800texting.com *.wap.800texting.com *.wiki.800texting.com

Other domains in certificate

agentechange.com *.agentechange.com *.random.agentechange.com

bullsheadhartshorne.co.uk *.bullsheadhartshorne.co.uk *.mail.bullsheadhartshorne.co.uk

chinazone.biz *.chinazone.biz *.www.chinazone.biz

coachlines.com *.coachlines.com

d2bnetwork.com *.d2bnetwork.com *.flgjkr.d2bnetwork.com *.m.d2bnetwork.com

*.assets.devicethe.com *.demo.devicethe.com *.dev.devicethe.com devicethe.com *.devicethe.com *.test.devicethe.com

dioctolib.de *.dioctolib.de

*.dan.dotcfa.com dotcfa.com *.dotcfa.com *.hostmaster.dotcfa.com *.random.dotcfa.com

*.127e203a-5a37-41f1-b767-7ec91175d500.expires.in *.app.expires.in *.back.expires.in *.bi.expires.in *.chart.expires.in expires.in *.expires.in *.idsdk.expires.in *.lock.expires.in *.notexistspack.expires.in *.one.expires.in *.rego.expires.in *.stats.expires.in *.token.expires.in *.visual.expires.in

flagsandpennants.com *.flagsandpennants.com

freeones.au *.freeones.au

*.data.ggo.bet ggo.bet *.ggo.bet

*.api.holdvine.com *.app.holdvine.com holdvine.com *.holdvine.com *.test.holdvine.com

in-pol.pl *.in-pol.pl *.ww25.in-pol.pl

jumpsuit.com.au *.jumpsuit.com.au *.random.jumpsuit.com.au

kinozapas.live *.kinozapas.live *.ww38.kinozapas.live

menorah.com.au *.menorah.com.au *.random.menorah.com.au

october20comms.com *.october20comms.com *.www.october20comms.com

*.random.speedstich.co.uk speedstich.co.uk *.speedstich.co.uk

*.32.teletext.live teletext.live *.teletext.live *.ww38.teletext.live

tiburonciin.com *.tiburonciin.com *.ww25.tiburonciin.com