SSL Certificate Analysis for wp.funtouki.com - Security Grade & TLS Configuration

Open Cached · just now

76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1

Let's Encrypt

Certificate Information

Subject

CN=notified.au

Issuer

C=US, O=Let's Encrypt, CN=YR2

Valid From

June 01, 2026

Valid Until

August 30, 2026 81 days

Public Key

RSA 4096 bit Strong

Signature Algorithm

SHA256-RSA

SHA-256 Fingerprint

78:41:6A:00:DE:DE:2A:47:B2:31:5E:21:46:FE:F0:25:32:B3:06:54:8D:8E:CB:9F:DF:F9:6A:FA:59:0A:E6:9F

Alternative Names

82 domains

Security Configuration

TLS Protocols

TLS 1.2 TLS 1.3

Forward Secrecy

Supported (Modern clients use PFS)

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records

Not Configured (Any CA can issue certificates)

CAA Issues

• No CAA records configured - any CA can issue certificates

Recommendations

• Implement CAA records to restrict which CAs can issue certificates for your domain
• This adds an extra layer of security against unauthorized certificate issuance
• Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
• Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

82 domains

funtouki.com *.funtouki.com *.med.funtouki.com *.new.funtouki.com *.wp.funtouki.com

Other domains in certificate

asusrouter.net *.asusrouter.net *.ww38.asusrouter.net

*.chat.colinglentrust.org colinglentrust.org *.colinglentrust.org *.everywhere.colinglentrust.org *.gslb.colinglentrust.org *.jobs.colinglentrust.org *.mobile.colinglentrust.org *.ofertas-trabajo.colinglentrust.org *.oh.colinglentrust.org *.plsstg.colinglentrust.org *.r53.colinglentrust.org *.static.colinglentrust.org *.support.colinglentrust.org *.ww16.colinglentrust.org *.ww25.colinglentrust.org

createyourowncomics.com *.createyourowncomics.com

defensarincon.org *.defensarincon.org *.ww25.defensarincon.org

easybux.cc *.easybux.cc *.random.easybux.cc *.ww25.easybux.cc *.ww38.easybux.cc

finehookupclubs.com *.finehookupclubs.com

frasepaliativa.com.br *.frasepaliativa.com.br *.mail.frasepaliativa.com.br

*.dga.fwpd.com fwpd.com *.fwpd.com *.hill-company.fwpd.com *.ra.fwpd.com *.ww16.fwpd.com *.ww25.fwpd.com *.ww38.fwpd.com *.z.fwpd.com

*.com.kyitharpharmacy.com *.hh.kyitharpharmacy.com kyitharpharmacy.com *.kyitharpharmacy.com *.www.kyitharpharmacy.com

nickgaglia.com *.nickgaglia.com

notified.au *.notified.au *.random.notified.au *.ww16.notified.au

ots.com.au *.ots.com.au *.tops.ots.com.au *.ww25.ots.com.au *.ww38.ots.com.au

serviviositv.es *.serviviositv.es *.ww16.serviviositv.es *.ww25.serviviositv.es

theladyintheblack.com *.theladyintheblack.com

theorchardperth.com.au *.theorchardperth.com.au *.ww25.theorchardperth.com.au *.ww38.theorchardperth.com.au

*.random.unsigned.au unsigned.au *.unsigned.au *.ww25.unsigned.au

*.private.xviveos.com *.red.xviveos.com *.ww31.xviveos.com xviveos.com *.xviveos.com