Open
Cached
·
just now
83/100
SECURITY SCORE
Certificate Information
Subject
C=IT, L=Firenze, O=Università degli Studi di Firenze, CN=hips.unifi.it
Issuer
C=GR, O=Hellenic Academic and Research Institutions CA, CN=GEANT TLS RSA 1
Valid From
October 14, 2025
Valid Until
October 14, 2026
320 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
2A:B1:B6:D5:B4:23:E7:79:26:DF:29:93:DA:4D:95:36:DA:7A:49:EA:AA:00:EA:92:A4:CB:9F:0F:01:A0:CD:F9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15768000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
hips.unifi.it
histelcon2023.unifi.it
hoflorence.unifi.it
homohorizontalis.unifi.it
humaneuromed.unifi.it
i-ride.unifi.it
icome11.unifi.it
idecom.unifi.it
imp2022.unifi.it
inas.unifi.it
indicee.unifi.it
infermieristicapediatrica.unifi.it
inglorious30.unifi.it
innovationintermediaries.unifi.it
insurlab.unifi.it
irmi.unifi.it
ismec2018.unifi.it
isocs30-2024.unifi.it
istitutoconfucio.unifi.it
istitutopapirologico.unifi.it
iterkhore.unifi.it
iwms26.unifi.it
joinpap.unifi.it
kimoco.unifi.it
labcambio.unifi.it
labdesignitalianotreno.unifi.it
labfileglob.unifi.it
labima.unifi.it
lablita.unifi.it
laboratoridibotanica.unifi.it
laboratoriofisiologiavegetale.unifi.it
laboratoriopsicometria.unifi.it
labtele.unifi.it
ladom.unifi.it
lamm.unifi.it
landscape.unifi.it
lasi.unifi.it
lasis.unifi.it
lea.unifi.it
lens.unifi.it
letteraturagiovanile.unifi.it
letteraturamedicinascienze.unifi.it
liu.unifi.it
ls-hrm.unifi.it
innovabio.sma.unifi.it
inyourface.sagas.unifi.it
labele.dinfo.unifi.it
labmaq.dinfo.unifi.it
laboratorio-palinologia.dst.unifi.it
lem.dinfo.unifi.it
www.hips.unifi.it
www.histelcon2023.unifi.it
www.hoflorence.unifi.it
www.homohorizontalis.unifi.it
www.humaneuromed.unifi.it
www.i-ride.unifi.it
www.icome11.unifi.it
www.idecom.unifi.it
www.imp2022.unifi.it
www.inas.unifi.it
www.indicee.unifi.it
www.infermieristicapediatrica.unifi.it
www.inglorious30.unifi.it
www.innovationintermediaries.unifi.it
www.insurlab.unifi.it
www.irmi.unifi.it
www.ismec2018.unifi.it
www.isocs30-2024.unifi.it
www.istitutoconfucio.unifi.it
www.istitutopapirologico.unifi.it
www.iterkhore.unifi.it
www.iwms26.unifi.it
www.joinpap.unifi.it
www.kimoco.unifi.it
www.labcambio.unifi.it
www.labdesignitalianotreno.unifi.it
www.labfileglob.unifi.it
www.labima.unifi.it
www.lablita.unifi.it
www.laboratoridibotanica.unifi.it
www.laboratoriofisiologiavegetale.unifi.it
www.laboratoriopsicometria.unifi.it
www.labtele.unifi.it
www.ladom.unifi.it
www.lamm.unifi.it
www.landscape.unifi.it
www.lasi.unifi.it
www.lasis.unifi.it
www.lea.unifi.it
www.lens.unifi.it
www.letteraturagiovanile.unifi.it
www.letteraturamedicinascienze.unifi.it
www.liu.unifi.it
www.ls-hrm.unifi.it
www.innovabio.sma.unifi.it
www.inyourface.sagas.unifi.it
www.labele.dinfo.unifi.it
www.labmaq.dinfo.unifi.it
www.laboratorio-palinologia.dst.unifi.it
www.lem.dinfo.unifi.it