Open
Cached
·
just now
76/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=easyrock.it
Issuer
C=US, O=Let's Encrypt, CN=R13
Valid From
April 26, 2026
Valid Until
July 25, 2026
61 days
Public Key
RSA
4096 bit
Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
80:D8:2D:FB:9C:3C:0B:47:F2:00:E8:08:33:7D:15:47:F8:2D:EA:7D:9F:79:0A:6D:F7:48:09:DE:84:FC:78:89
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
90 domains
wbauch.com
*.wbauch.com
*.gputlkx.wbauch.com
*.kzqriohlg.wbauch.com
*.pysdrnhw.wbauch.com
*.admin.bubet.fish
*.app.bubet.fish
*.assets.bubet.fish
bubet.fish
*.bubet.fish
*.d5cb3f7e-dda6-43a0-8dac-9832bf3ddfb6.bubet.fish
*.dev.bubet.fish
*.test.bubet.fish
*.ww38.bubet.fish
easyrock.it
*.easyrock.it
elderpoint.com
*.elderpoint.com
*.secure.elderpoint.com
*.web.elderpoint.com
*.cpcontacts.kulaluravuthiagi.com
*.jpzhtcpanel.kulaluravuthiagi.com
kulaluravuthiagi.com
*.kulaluravuthiagi.com
*.te.kulaluravuthiagi.com
*.webdisk.kulaluravuthiagi.com
*.ww1.kulaluravuthiagi.com
*.ww7.kulaluravuthiagi.com
papron.com
*.papron.com
*.ro.papron.com
*.2.sehesp.org
*.3.sehesp.org
*.a.sehesp.org
*.blog.sehesp.org
*.blogs.sehesp.org
*.ce76bd02-031c-43d4-bcd2-a9ba25414f38.sehesp.org
*.chat.sehesp.org
*.cpcalendars.sehesp.org
*.cpoucqmpuepoczta.sehesp.org
*.dns.sehesp.org
*.eecdchelp.sehesp.org
*.ftpd.sehesp.org
*.git.sehesp.org
*.guest.sehesp.org
*.help.sehesp.org
*.host.sehesp.org
*.hostmaster.sehesp.org
*.hr.sehesp.org
*.idryzrcirrweb.sehesp.org
*.imap.sehesp.org
*.imap3.sehesp.org
*.imapd.sehesp.org
*.img.sehesp.org
*.laravel.sehesp.org
*.log.sehesp.org
*.mail.sehesp.org
*.mailhost.sehesp.org
*.mailin1.sehesp.org
*.mx.sehesp.org
*.mx0.sehesp.org
*.mx01.sehesp.org
*.negcystatic.sehesp.org
*.new.sehesp.org
*.ns.sehesp.org
*.out.sehesp.org
*.owa.sehesp.org
*.poczta.sehesp.org
*.portal.sehesp.org
*.relay.sehesp.org
*.rzdwewiki.sehesp.org
sehesp.org
*.sehesp.org
*.server.sehesp.org
*.shop.sehesp.org
*.smtp1.sehesp.org
*.spam.sehesp.org
*.static.sehesp.org
*.status.sehesp.org
*.test.sehesp.org
*.vpn2.sehesp.org
*.web.sehesp.org
*.web0.sehesp.org
*.wp.sehesp.org
*.ww2.sehesp.org
*.www.sehesp.org
*.www02.sehesp.org
*.www2.sehesp.org
*.xxxyyyzz.sehesp.org
*.zimbra.sehesp.org
Other domains in certificate