Open
Cached
·
just now
77/100
SECURITY SCORE
Certificate Information
Subject
CN=dalhousiekennels.ca
Issuer
C=US, O=Google Trust Services, CN=WR3
Valid From
November 24, 2025
Valid Until
February 22, 2026
89 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
32:16:2C:02:CC:05:B0:F6:4D:98:9E:61:C9:9C:23:7D:FE:F9:50:50:44:F2:19:2C:73:83:0E:47:4C:52:BA:23
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31556926
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
100 domains
www.niemeyer.wtf
app.12weekbattleplanner.com
arhaus-roomplanner-test.3dcloud.io
aaitcs.com
www.abnermarcelocorretor.com.br
www.adobeanalyticsfordummies.com
integrations.aldridge.app
alfredospedidos.com
clickncheck.ambedo.io
dev.shiso.ambii.com
amosi.app
audit.auctusiq.com
hit.avivhaas.com
azadf.com
www.benjamincoutts.com
dashie-dev.bennybutton.com
bills-manager.app
www.blueenergia.com
photo-dev.bus20.com
caddenewsletter.com
sl.cardbyte.ai
caseysinger.com
shocat.co.kr
qualitech.codefar.com.br
classroom-staging.codingninjas.com
www.dunhuang.com.hk
dalhousiekennels.ca
dataurl.app
auth.pomodoro.devunlimit.com
www.digcoach.com
www.dodovideochat.com
dorm-review.com
cerebro.eatmatch.app
paypalpayments.educup.io
cadastro.enercred.com.br
www.ent-heldebaume.fr
eprepapp.com
fcplcrm.com
fisioterapiapinseque.com
floridademolitionservices.com
libertycoin.freerfuturefest.com
fullstackservicesllc.com
getsetio.com
goflysail.ai
gopalasvegkitchen.com
grandrailtour.com
hirokuma.jp
innocens.be
www.irontemplarrecovery.com
www.jsphysiol.org
lang.blue
link-staging.lisnclips.app
littlescrawl.com
www.lueraycoladoabogados.com
api.staging.mailclerk.app
mandelid.com
www.marcmatvienko.com
www.mariabalaet.com
www.mattwood.dev
maynardj.com
mcdqr.app
mifuturo.uy
miguelzurita.com
mixithandy.com
invite.moby.app
mrrdev.info
roller.mseefelder.com
create.mymealplanner.app
www.linkface.net.br
monitor.oddmonitor.com
www.onlyeverythingmusical.com
optifleet.optimusride.com
outofbodyinc.com
overtureatributetorush.com
loroffgmbh.pacta-cloud.app
palle.com.br
rdfmpremium.pampa.com.br
paniconfianca.pt
quantitydiscounts.payplaxe.com
pitagorasai.pt
pages.pitchfade.com
join.reset.app
baywa-kcs.rgateway.it
ryerson.ai
servicehelix.com
www.sigma7e.com
peppie.simonton.app
sistersuzie.ca
www.splittaxpens.app
supportwhatsapp.com
xmas.tank.ee
thedowlinglife.com
www.umangbhatt.dev
v3rt1cal.com
www.v8.dev
verkeertrainer.nl
www.vivefacil.app
itakeskus.weup.city
workwellsoftware.com
yopxue.cn
Other domains in certificate