DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Certificate Information

Subject
CN=deepdex.org
Issuer
C=US, O=Let's Encrypt, CN=R12
Valid From
February 05, 2026
Valid Until
May 06, 2026 84 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7A:AC:4C:1A:EA:87:25:F0:EB:D2:A4:CF:26:B1:87:AE:D2:D7:3E:68:ED:D4:B7:52:F1:D7:C6:BA:BB:65:4D:A6
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
witherick.com *.witherick.com

Other domains in certificate

airbnbguestreview.com *.airbnbguestreview.com *.ww25.airbnbguestreview.com
airlija.com *.airlija.com
aisei.com *.aisei.com
aizhongwen.com *.aizhongwen.com
*.dashboard.deepdex.org deepdex.org *.deepdex.org *.docs.deepdex.org *.mail.deepdex.org *.ts.deepdex.org
*.championsleague.frauen.live frauen.live *.frauen.live *.olmiyos.frauen.live *.wm.frauen.live
manorhouselighting.com *.manorhouselighting.com *.ww38.manorhouselighting.com
mmsmaza.net *.mmsmaza.net *.ww38.mmsmaza.net
myftb.com *.myftb.com *.ww16.myftb.com *.ww38.myftb.com
riffas.com *.riffas.com
rogeecar.co *.rogeecar.co
semduvida.com *.semduvida.com
sibai.net *.sibai.net
softgossiptone.live *.softgossiptone.live
spamobile.com *.spamobile.com
stoenescu.com *.stoenescu.com
sureshbabu.com *.sureshbabu.com
swellegant.com *.swellegant.com
syuuwa.com *.syuuwa.com
szabadi.com *.szabadi.com
teleportalx.com *.teleportalx.com
the2timearound.com *.the2timearound.com
thorwood.com *.thorwood.com
tiendamuebles.com *.tiendamuebles.com
travelconnectionunits.live *.travelconnectionunits.live
travelroadrevel.xyz *.travelroadrevel.xyz
treasureweddingsstories.beauty *.treasureweddingsstories.beauty
trerotola.com *.trerotola.com
tusmetas.com *.tusmetas.com
videosdecoroas.com *.videosdecoroas.com
weddingwhisperingnotes.beauty *.weddingwhisperingnotes.beauty
*.admin.wellsfargoretail.com *.mail.wellsfargoretail.com *.random.wellsfargoretail.com wellsfargoretail.com *.wellsfargoretail.com *.ww16.wellsfargoretail.com *.ww17.wellsfargoretail.com
wingsoftianlu.com *.wingsoftianlu.com
workuplift.site *.workuplift.site
xiandong.com *.xiandong.com