Open
Cached
·
just now
74/100
SECURITY SCORE
Detected Technologies
Certificate Information
Subject
CN=tls.automattic.com
Issuer
C=US, O=Let's Encrypt, CN=E8
Valid From
February 23, 2026
Valid Until
May 24, 2026
29 days
Public Key
ECDSA
256 bit
(P-256)
Adequate
Signature Algorithm
ECDSA-SHA384
SHA-256 Fingerprint
AB:AA:84:90:89:DC:2C:2C:5F:76:EF:D2:5F:9C:59:37:8C:4A:47:85:A9:AE:B1:D3:EE:B2:51:BE:F7:5D:9C:75
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
49 domains
servicefox.com
www.servicefox.com
20somethingguru.com
accurateaustralia.com
www.accurateaustralia.com
www.ahonlaitaa.com
american-house.org
www.american-house.org
apostlepeterjones.com
www.astoundingaidservices.com
atrendymama.com
tls.automattic.com
belleswheels.com
www.belleswheels.com
www.clarasatta.com
www.erdi-hse.com
gratzlwinkler.com
isabellechardavoyne.com
www.isabellechardavoyne.com
itwillbeok.blog
www.itwillbeok.blog
www.jarmopoukkula.com
jarrodrussell.com
jarynlyneahart.com
www.jarynlyneahart.com
jasmardis.com
www.jasmardis.com
www.lakeslandrfb.com
leedly.com
lonedevr.com
madimadison.com
misshollywoodshow.com
mkbphotography.org
myyescapades.com
naturalmo.com
www.naturalmo.com
olab.blog
www.olab.blog
otherpeopleschildren.blog
overstreet.farm
psychologyhits.com
reispproductions.com
safari-eg.de
safy50.buzz
taxguru.com
thenomadicsaver.com
watanplusnews.com
www.watanplusnews.com
www.whitehat.social
Other domains in certificate