Open
Cached
·
just now
86/100
SECURITY SCORE
Certificate Information
Subject
CN=tinoo.co
Issuer
C=AT, O=ZeroSSL, CN=ZeroSSL RSA Domain Secure Site CA
Valid From
October 15, 2025
Valid Until
January 13, 2026
52 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA384-RSA
SHA-256 Fingerprint
20:4D:BA:90:15:EE:FE:66:A1:2F:06:00:7B:72:88:9C:B2:25:4B:30:FE:22:54:5F:5C:5F:D9:4C:1A:8E:5C:5F
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=63072000; includeSubdomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Present
ALLOWALL
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
35 domains
teafun.cc
17push.tw
andbed.tw
beeftop.com
bonchu.cc
bunnyclean.pro
buy4beauty.com
chieny.cc
colaresearchclubs.com
tt.trytwo.com.tw
finn-comforttw.com
fitbear.net
funte.tw
goldanchorcoffee.com
url.goodder.co
hb1979.com
k2pro.us
kafenmy.com
koha.media
madhk.cc
maggieyeh.net
miiniicake.com
newsgoood.com
onlinebiz666.com
orderyellow.com
pshk.cc
purehome.tw
ryanchen7955.com
trends.search-hub.cn
thefrogfit.com
tinoo.co
weclassic.cc
xinlife.shop
www.xn--20xx70av2d.tw
yodee.tw
Other domains in certificate