Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Misconfiguration - http-status 400 - 499

Checked:
06.11.2025 20:47:51

Older results

M - 05.11.2025 13:01:39

M - 31.10.2025 19:36:26

M - 30.10.2025 14:07:20

M - 30.10.2025 04:15:33

M - 26.10.2025 21:10:40

X - 25.10.2025 18:01:52

X - 25.10.2025 12:32:47

M - 24.10.2025 17:34:17

M - 24.10.2025 14:19:07

M - 24.10.2025 12:27:37

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
server.familyds.net	A	91.202.27.175 Voronezh/Voronezh Oblast/Russia (RU) - JSC KVANT-TELEKOM No Hostname found	yes	1	0
	AAAA		yes
www.server.familyds.net		Name Error	yes	1	0
www.server.familyds.net	A	91.202.27.175 Voronezh/Voronezh Oblast/Russia (RU) - JSC KVANT-TELEKOM No Hostname found	no

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 61809, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 21.11.2025, 00:00:00 +, Signature-Inception: 31.10.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: net
net	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner net., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 19.11.2025, 17:00:00 +, Signature-Inception: 06.11.2025, 16:00:00 +, KeyTag 61809, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 61809 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 17133, Flags 256


	Public Key with Algorithm 13, KeyTag 37331, Flags 257 (SEP = Secure Entry Point)


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner net., Algorithm: 13, 1 Labels, original TTL: 86400 sec, Signature-expiration: 13.11.2025, 14:10:35 +, Signature-Inception: 29.10.2025, 14:05:35 +, KeyTag 37331, Signer-Name: net


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 37331 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 37331, DigestType 2 and Digest "LwvsLW95370dCP0ho6+S0OOaS57x4/QRH/8oJJDaRTs=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: familyds.net
familyds.net	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "psmf32grrar4e9tpcl1d74v6g1smh0k6" between the hashed NSEC3-owner "psme09n26kolrvnkfoubk9tnjta4sfkm" and the hashed NextOwner "psmft2p4g9kbc0ic2ngnicisev1ph5bs". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner psme09n26kolrvnkfoubk9tnjta4sfkm.net., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 11.11.2025, 03:17:52 +, Signature-Inception: 04.11.2025, 02:07:52 +, KeyTag 17133, Signer-Name: net


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "a1rt98bs5qgc9nfi51s9hci47uljg6jh" as Owner. That's the Hash of "net" with the NextHashedOwnerName "a1rtlnpgulogn7b9a62shje1u3ttp8dr". So that domain name is the Closest Encloser of "familyds.net". Opt-Out: True. Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner a1rt98bs5qgc9nfi51s9hci47uljg6jh.net., Algorithm: 13, 2 Labels, original TTL: 900 sec, Signature-expiration: 11.11.2025, 03:15:22 +, Signature-Inception: 04.11.2025, 02:05:22 +, KeyTag 17133, Signer-Name: net


	0 DNSKEY RR found




Zone: server.familyds.net
server.familyds.net	0 DS RR in the parent zone found


	0 DNSKEY RR found




Zone: www.server.familyds.net
www.server.familyds.net	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
www.server.familyds.net	• ddns-ns1.quickconnect.to
server.familyds.net	T ddns-ns1.quickconnect.to	161.35.216.33 Frankfurt am Main/Hesse/Germany (DE) - DigitalOcean, LLC
familyds.net	T ddns-ns1.quickconnect.to	161.35.216.33 Frankfurt am Main/Hesse/Germany (DE) - DigitalOcean, LLC
	T ddns-ns2.quickconnect.to	165.232.102.219 Slough/England/United Kingdom (GB) - DigitalOcean, LLC
	T ddns-ns3.quickconnect.to	139.59.136.221 Frankfurt am Main/Hesse/Germany (DE) - DIGITALOCEAN
	T ddns-ns4.quickconnect.to	167.99.201.119 Slough/England/United Kingdom (GB) - DigitalOcean, LLC
net	• a.gtld-servers.net		•
	• b.gtld-servers.net		•
	• c.gtld-servers.net		•
	• d.gtld-servers.net		•
	• e.gtld-servers.net		•
	• f.gtld-servers.net		•
	• g.gtld-servers.net		•
	• h.gtld-servers.net		•
	• i.gtld-servers.net		•
	• j.gtld-servers.net		•
	• k.gtld-servers.net		•
	• l.gtld-servers.net		•
	• m.gtld-servers.net		•

4. SOA-Entries

Domain:	net
Zone-Name:	net
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1762458442
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	6

Domain:	net
Zone-Name:	net
Primary:	a.gtld-servers.net
Mail:	nstld.verisign-grs.com
Serial:	1762458462
Refresh:	1800
Retry:	900
Expire:	604800
TTL:	900
num Entries:	7

Domain:	familyds.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	4

Domain:	server.familyds.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

Domain:	www.server.familyds.net
Zone-Name:
Primary:
Mail:
Serial:
Refresh:
Retry:
Expire:
TTL:
num Entries:	1

5. Screenshots

Startaddress: https://server.familyds.net:5001/, address used: https://server.familyds.net:5001/#/signin, Screenshot created 2025-12-09 12:39:03 +00:0

Mobil (412px x 732px)

1237 milliseconds

Screenshot mobile - https://server.familyds.net:5001/#/signin

Mobil + Landscape (732px x 412px)

1257 milliseconds

Screenshot mobile landscape - https://server.familyds.net:5001/#/signin

Screen (1280px x 1680px)

1759 milliseconds

Screenshot Desktop - https://server.familyds.net:5001/#/signin

Mobile- and other Chrome-Checks

	width	height
visual Viewport	412	732
content Size	412	732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://server.familyds.net:5001/ 91.202.27.175	400	Html is minified: 106.90 %	0.143	M
Bad Request
Server: nginx
Date: Thu, 06 Nov 2025 19:52:58 GMT
Connection: close
Content-Type: text/html
Content-Length: 248

• http://www.server.familyds.net:5001/ 91.202.27.175	400	Html is minified: 106.90 %	0.127	M
Bad Request
Server: nginx
Date: Thu, 06 Nov 2025 19:52:58 GMT
Connection: close
Content-Type: text/html
Content-Length: 248

• https://server.familyds.net:5001/ 91.202.27.175 gzip used - 2571 / 11557 - 77.75 %	200	Html is minified: 101.76 %	3.953	B
Server: nginx
Date: Thu, 06 Nov 2025 19:52:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-Control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self'; connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://.googleapis.com https://.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://.synology.com https://.synology.cn http://.synology.com http://.synology.cn http://global.synologydownload.com https://global.synologydownload.com; img-src 'self' data: blob: https://.google.com https://.googleapis.com http://.googlecode.com https://.gstatic.com https://global.download.synology.com; media-src 'self' data: about: https://.synology.com https://help.synology.cn; script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://maps.googleapis.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn; style-src 'self' 'unsafe-inline' https://*.googleapis.com;
Content-Type: text/html; charset="UTF-8"
Content-Encoding: gzip
Content-Length: 2571

• https://www.server.familyds.net:5001/ 91.202.27.175 gzip used - 2571 / 11557 - 77.75 %	200	Html is minified: 101.76 %	3.580	B
Server: nginx
Date: Thu, 06 Nov 2025 19:53:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-Control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self'; connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://.googleapis.com https://.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://.synology.com https://.synology.cn http://.synology.com http://.synology.cn http://global.synologydownload.com https://global.synologydownload.com; img-src 'self' data: blob: https://.google.com https://.googleapis.com http://.googlecode.com https://.gstatic.com https://global.download.synology.com; media-src 'self' data: about: https://.synology.com https://help.synology.cn; script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://maps.googleapis.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn; style-src 'self' 'unsafe-inline' https://*.googleapis.com;
Content-Type: text/html; charset="UTF-8"
Content-Encoding: gzip
Content-Length: 2571

• http://server.familyds.net:5001/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 91.202.27.175	400	Html is minified: 106.90 %	0.127	M
Bad Request
Visible Content:
Server: nginx
Date: Thu, 06 Nov 2025 19:53:09 GMT
Connection: close
Content-Type: text/html
Content-Length: 248

• http://www.server.familyds.net:5001/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 91.202.27.175	400	Html is minified: 106.90 %	0.127	M
Bad Request
Visible Content:
Server: nginx
Date: Thu, 06 Nov 2025 19:53:09 GMT
Connection: close
Content-Type: text/html
Content-Length: 248

• https://91.202.27.175:5001/ 91.202.27.175 gzip used - 2571 / 11557 - 77.75 %	200	Html is minified: 101.76 %	3.517	N
Certificate error: RemoteCertificateNameMismatch
Server: nginx
Date: Thu, 06 Nov 2025 19:53:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-Control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Content-Security-Policy: base-uri 'self'; connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://.googleapis.com https://.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://.synology.com https://.synology.cn http://.synology.com http://.synology.cn http://global.synologydownload.com https://global.synologydownload.com; img-src 'self' data: blob: https://.google.com https://.googleapis.com http://.googlecode.com https://.gstatic.com https://global.download.synology.com; media-src 'self' data: about: https://.synology.com https://help.synology.cn; script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://maps.googleapis.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn; style-src 'self' 'unsafe-inline' https://*.googleapis.com;
Content-Type: text/html; charset="UTF-8"
Content-Encoding: gzip
Content-Length: 2571

7. Comments

	1. General Results, most used to calculate the result
A	name "server.familyds.net" is domain, public suffix is ".familyds.net", top-level-domain is ".net", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services", num .net-domains preloaded: 10583 (complete: 276475)
A	Good: All ip addresses are public addresses
	Warning: Only one ip address found: server.familyds.net has only one ip address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: server.familyds.net has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	DNS: "Name Error" means: No www-dns-entry defined. This isn't a problem
A	Good: destination is https
A	Good: No cookie sent via http.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
B	https://server.familyds.net:5001/ 91.202.27.175	200	Missing HSTS-Header
B	https://www.server.familyds.net:5001/ 91.202.27.175	200	Missing HSTS-Header
C	Error - no preferred version www or non-www. Select one version as preferred version, then add a redirect https + not-preferred version to https + preferred version. Perhaps in your port 443 vHost something like "RewriteEngine on" + "RewriteCond %{SERVER_NAME} = example.com" + "ReWriteRule ^ https://www.example.com%{REQUEST_URI} [END,QSA,R=permanent]" (three rows, without the "). That should create a redirect https + example.com ⇒ https + www.example.com. Or switch both values to use the non-www version as your preferred version.
C	Error - more then one version with Http-Status 200. After all redirects, all users (and search engines) should see the same https url: Non-www or www, but not both with http status 200.
M	http://server.familyds.net:5001/ 91.202.27.175	400	Misconfiguration - main pages should never send http status 400 - 499
M	http://www.server.familyds.net:5001/ 91.202.27.175	400	Misconfiguration - main pages should never send http status 400 - 499
N	https://91.202.27.175:5001/ 91.202.27.175	200	Error - Certificate isn't trusted, RemoteCertificateNameMismatch
X	Fatal error: Nameserver doesn't support TCP connection: ddns-ns1.quickconnect.to / 161.35.216.33: Timeout
X	Fatal error: Nameserver doesn't support TCP connection: ddns-ns2.quickconnect.to / 165.232.102.219: Timeout
X	Fatal error: Nameserver doesn't support TCP connection: ddns-ns3.quickconnect.to / 139.59.136.221: Timeout
X	Fatal error: Nameserver doesn't support TCP connection: ddns-ns4.quickconnect.to / 167.99.201.119: Timeout
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain server.familyds.net, 1 ip addresses, 1 different http results.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.server.familyds.net
	2. Header-Checks
A	server.familyds.net 91.202.27.175	Content-Security-Policy	Ok: Header without syntax errors found: base-uri 'self'; connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://.googleapis.com https://.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://.synology.com https://.synology.cn http://.synology.com http://.synology.cn http://global.synologydownload.com https://global.synologydownload.com; img-src 'self' data: blob: https://.google.com https://.googleapis.com http://.googlecode.com https://.gstatic.com https://global.download.synology.com; media-src 'self' data: about: https://.synology.com https://help.synology.cn; script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://maps.googleapis.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn; style-src 'self' 'unsafe-inline' https://*.googleapis.com;
F			Bad: default-src with "*" or a scheme found. That allows too much, don't use such a definition.
F			Bad: default-src with 'unsafe-inline' or 'unsave-eval'. That's dangerous, don't use it.
A			Good: form-action directive found. That reduces the risk sending data to unwanted domains. form-action is a navigation-directive, so default-src isn't used.
A			Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
A			Good: base-uri directive found. That limits the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
E			Critical: No object-src defined, the default-src used as fallback allows too much. object / embed / applet shouldn't be able to load these resources.
F			Critical: script-src with 'unsafe-inline' or 'unsafe-eval' and without a nonce found. That's dangerous, don't use it. If you really need one of these unsafe directives, add a nonce.
F			Critical: script-src with * or a scheme found. Never allow wildcard - sources.
F			Dangerous: script-src with data: schema found. The data: schema allows hidden code injection. Insert <script src='data:application/javascript;base64,YWxlcnQoJ1hTUycpOw=='></script> in your page and see what happens.
F			Dangerous: frame-src is defined and allows the data: schema. That allows hidden code injection. Insert <iframe src="data:text/html;charset=utf-8;base64,PCFET0NUWVBFIGh0bWw+PGh0bWw+PGJvZHk+PHA+YmVmb3JlPHNjcmlwdCB0eXBlPSJ0ZXh0L2phdmFzY3JpcHQiPmFsZXJ0KCdYU1MnKTwvc2NyaXB0PjxwPmFmdGVyPC9ib2R5PjwvaHRtbD4="></iframe> in your page and see what happens.
A		X-Content-Type-Options	Ok: Header without syntax errors found: nosniff
A		X-Frame-Options	Ok: Header without syntax errors found: SAMEORIGIN
B			Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection	Ok: Header without syntax errors found: 1; mode=block
B			Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
A	www.server.familyds.net 91.202.27.175	Content-Security-Policy	Ok: Header without syntax errors found: base-uri 'self'; connect-src data: ws: wss: http: https:; default-src 'self' 'unsafe-eval' data: blob: https://.synology.com https://www.synology.cn/ https://help.synology.cn/; font-src 'self' data: https://.googleapis.com https://.gstatic.com; form-action 'self'; frame-ancestors 'self'; frame-src 'self' data: blob: https://.synology.com https://.synology.cn http://.synology.com http://.synology.cn http://global.synologydownload.com https://global.synologydownload.com; img-src 'self' data: blob: https://.google.com https://.googleapis.com http://.googlecode.com https://.gstatic.com https://global.download.synology.com; media-src 'self' data: about: https://.synology.com https://help.synology.cn; script-src 'self' 'unsafe-eval' data: blob: https://maps.google.com https://maps.googleapis.com https://ajax.googleapis.com https://help.synology.com https://help.synology.cn; style-src 'self' 'unsafe-inline' https://*.googleapis.com;
F			Bad: default-src with "*" or a scheme found. That allows too much, don't use such a definition.
F			Bad: default-src with 'unsafe-inline' or 'unsave-eval'. That's dangerous, don't use it.
A			Good: form-action directive found. That reduces the risk sending data to unwanted domains. form-action is a navigation-directive, so default-src isn't used.
A			Good: frame-ancestors directive found. That limits pages who are allowed to use this page in a frame / iframe / object / embed / applet. frame-ancestors is a navigation-directive, so default-src isn't used.
A			Good: base-uri directive found. That limits the URLs which can be used in a document's <base> element. Because it's a document directive, default-src isn't used, so an own directive is required.
E			Critical: No object-src defined, the default-src used as fallback allows too much. object / embed / applet shouldn't be able to load these resources.
F			Critical: script-src with 'unsafe-inline' or 'unsafe-eval' and without a nonce found. That's dangerous, don't use it. If you really need one of these unsafe directives, add a nonce.
F			Critical: script-src with * or a scheme found. Never allow wildcard - sources.
F			Dangerous: script-src with data: schema found. The data: schema allows hidden code injection. Insert <script src='data:application/javascript;base64,YWxlcnQoJ1hTUycpOw=='></script> in your page and see what happens.
F			Dangerous: frame-src is defined and allows the data: schema. That allows hidden code injection. Insert <iframe src="data:text/html;charset=utf-8;base64,PCFET0NUWVBFIGh0bWw+PGh0bWw+PGJvZHk+PHA+YmVmb3JlPHNjcmlwdCB0eXBlPSJ0ZXh0L2phdmFzY3JpcHQiPmFsZXJ0KCdYU1MnKTwvc2NyaXB0PjxwPmFmdGVyPC9ib2R5PjwvaHRtbD4="></iframe> in your page and see what happens.
A		X-Content-Type-Options	Ok: Header without syntax errors found: nosniff
A		X-Frame-Options	Ok: Header without syntax errors found: SAMEORIGIN
B			Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A		X-Xss-Protection	Ok: Header without syntax errors found: 1; mode=block
B			Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
F	server.familyds.net 91.202.27.175	Referrer-Policy	Critical: Missing Header:
F	server.familyds.net 91.202.27.175	Permissions-Policy	Critical: Missing Header:
B	server.familyds.net 91.202.27.175	Cross-Origin-Embedder-Policy	Info: Missing Header
B	server.familyds.net 91.202.27.175	Cross-Origin-Opener-Policy	Info: Missing Header
B	server.familyds.net 91.202.27.175	Cross-Origin-Resource-Policy	Info: Missing Header
F	www.server.familyds.net 91.202.27.175	Referrer-Policy	Critical: Missing Header:
F	www.server.familyds.net 91.202.27.175	Permissions-Policy	Critical: Missing Header:
B	www.server.familyds.net 91.202.27.175	Cross-Origin-Embedder-Policy	Info: Missing Header
B	www.server.familyds.net 91.202.27.175	Cross-Origin-Opener-Policy	Info: Missing Header
B	www.server.familyds.net 91.202.27.175	Cross-Origin-Resource-Policy	Info: Missing Header
	3. DNS- and NameServer - Checks
A
A
A	Info:: 13 different Name Servers found: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net, 13 Name Servers included in Delegation: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net, 13 Name Servers included in 1 Zone definitions: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net, 1 Name Servers listed in SOA.Primary: a.gtld-servers.net.
A	Good: Only one SOA.Primary Name Server found.: a.gtld-servers.net.
A	Good: SOA.Primary Name Server included in the delegation set.: a.gtld-servers.net.
A	Good: All Name Server Domain Names have a Public Suffix.
A
A	Good: Nameserver supports Echo Capitalization: 1 good Nameserver
X	Nameserver Timeout checking EDNS512: ddns-ns1.quickconnect.to / 161.35.216.33
X	Nameserver Timeout checking EDNS512: ddns-ns2.quickconnect.to / 165.232.102.219
X	Nameserver Timeout checking EDNS512: ddns-ns3.quickconnect.to / 139.59.136.221
X	Nameserver Timeout checking EDNS512: ddns-ns4.quickconnect.to / 167.99.201.119
A	Good: All SOA have the same Serial Number
A	Good: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create certificates
	4. Content- and Performance-critical Checks
	http://server.familyds.net:5001/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 91.202.27.175	400	Fatal: Check of /.well-known/acme-challenge/random-filename has a http status between 400 and 499, but not 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	http://www.server.familyds.net:5001/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 91.202.27.175	400	Fatal: Check of /.well-known/acme-challenge/random-filename has a http status between 400 and 499, but not 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
A	Good: Every https result with status 200 has a minified Html-Content with a quota lower then 110 %.
A	Good: Every https connection via port 443 supports the http/2 protocol via ALPN.
A	Info: No img element found, no alt attribute checked
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
A	Duration: 412320 milliseconds, 412.320 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

91.202.27.175

5001

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

91.202.27.175

5001

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=server.familyds.net
	2	CN=E7, O=Let's Encrypt, C=US

server.familyds.net

91.202.27.175

5001

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

server.familyds.net

91.202.27.175

5001

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=server.familyds.net
	2	CN=E7, O=Let's Encrypt, C=US

www.server.familyds.net

91.202.27.175

5001

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.server.familyds.net

91.202.27.175

5001

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
No SNI required - domain included in main certificate

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=server.familyds.net
	2	CN=E7, O=Let's Encrypt, C=US

9. Certificates

CN=server.familyds.net

10.09.2025

09.12.2025 06:39:00
15 hours expired

*.server.familyds.net, server.familyds.net - 2 entries

CN=server.familyds.net

10.09.2025

09.12.2025
0 days expired

*.server.familyds.net, server.familyds.net - 2 entries

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	ECDSA SHA384
Serial Number:	064993834CA300DB81519C1EFB9915938D25
Thumbprint:	5881F917952CFC1583CAE67A9D7394693162ED81
SHA256 / Certificate:	EMlkMnVYh2pYKif9Rs6nLG7XHqqEs80z6L7jEKXD2U8=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	6591aee1ac8c48c7b446dc18867e8607f768f04dec8c78a50dfaaa2191b4f891
SHA256 hex / Subject Public Key Information (SPKI):	6591aee1ac8c48c7b446dc18867e8607f768f04dec8c78a50dfaaa2191b4f891 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=E7, O=Let's Encrypt, C=US

13.03.2024

13.03.2027
expires in 459 days

CN=E7, O=Let's Encrypt, C=US

13.03.2024

13.03.2027
expires in 459 days

Keyalgorithm	EC Public Key (384 bit, secp384r1)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00AA75F1E62B8F0A220966D38BBFD4BAA1
Thumbprint:	3B73C17E3DF87CF3AA77F1389219EB5EDD519E7F
SHA256 / Certificate:	rrH9dBDoO8lvXaPGp8LBu4NtH6XLhucIUViQ5Ciodws=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	cbbc559b44d524d6a132bdac672744da3407f12aae5d5f722c5f6c7913871c75
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3464 days

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3464 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	008210CFB0D240E3594463E0BB63828B00
Thumbprint:	CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:	lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):	96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=R10, O=Let's Encrypt, C=US				0	0	9
CN=E6, O=Let's Encrypt, C=US				0	0	7
CN=E5, O=Let's Encrypt, C=US				0	0	7
CN=R11, O=Let's Encrypt, C=US				0	0	6
CN=R12, O=Let's Encrypt, C=US				0	2	4
CN=E7, O=Let's Encrypt, C=US				0	1	3
CN=R3, O=Let's Encrypt, C=US				0	0	2
CN=E8, O=Let's Encrypt, C=US				0	1	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
12675636515 leaf cert	CN=E8, O=Let's Encrypt, C=US	2025-11-11 13:24:06	2026-02-09 13:24:05	*.server.familyds.net, server.familyds.net - 2 entries
12675643975 leaf cert	CN=R12, O=Let's Encrypt, C=US	2025-11-11 13:24:01	2026-02-09 13:24:00	*.server.familyds.net, server.familyds.net - 2 entries
12675632471 leaf cert	CN=E7, O=Let's Encrypt, C=US	2025-11-11 13:23:28	2026-02-09 13:23:27	*.server.familyds.net, server.familyds.net - 2 entries
12675634830 leaf cert	CN=R12, O=Let's Encrypt, C=US	2025-11-11 13:23:24	2026-02-09 13:23:23	*.server.familyds.net, server.familyds.net - 2 entries
11819947152 leaf cert	CN=E7, O=Let's Encrypt, C=US	2025-09-10 05:39:32	2025-12-09 05:39:31	*.server.familyds.net, server.familyds.net - 2 entries
11819945906 leaf cert	CN=R12, O=Let's Encrypt, C=US	2025-09-10 05:39:28	2025-12-09 05:39:27	*.server.familyds.net, server.familyds.net - 2 entries
11819943289 leaf cert	CN=E7, O=Let's Encrypt, C=US	2025-09-10 05:39:01	2025-12-09 05:39:00	*.server.familyds.net, server.familyds.net - 2 entries
11819942749 leaf cert	CN=R12, O=Let's Encrypt, C=US	2025-09-10 05:38:57	2025-12-09 05:38:56	*.server.familyds.net, server.familyds.net - 2 entries
11058028550 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-07-09 20:50:27	2025-10-07 20:50:26	*.server.familyds.net, server.familyds.net - 2 entries
11058031877 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-07-09 20:50:22	2025-10-07 20:50:21	*.server.familyds.net, server.familyds.net - 2 entries
11058028085 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-07-09 20:49:57	2025-10-07 20:49:56	*.server.familyds.net, server.familyds.net - 2 entries
11058024478 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-07-09 20:49:52	2025-10-07 20:49:51	*.server.familyds.net, server.familyds.net - 2 entries
10362337569 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-05-09 12:59:41	2025-08-07 12:59:40	*.server.familyds.net, server.familyds.net - 2 entries
10362338157 leaf cert	CN=R11, O=Let's Encrypt, C=US	2025-05-09 12:59:37	2025-08-07 12:59:36	*.server.familyds.net, server.familyds.net - 2 entries
10362334520 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-05-09 12:59:09	2025-08-07 12:59:08	*.server.familyds.net, server.familyds.net - 2 entries
10362330535 leaf cert	CN=R11, O=Let's Encrypt, C=US	2025-05-09 12:59:05	2025-08-07 12:59:04	*.server.familyds.net, server.familyds.net - 2 entries
9682332303 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-03-03 18:39:53	2025-06-01 18:39:52	*.server.familyds.net, server.familyds.net - 2 entries
9682323770 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-03-03 18:39:47	2025-06-01 18:39:46	*.server.familyds.net, server.familyds.net - 2 entries
9682324539 leaf cert	CN=E6, O=Let's Encrypt, C=US	2025-03-03 18:39:22	2025-06-01 18:39:21	*.server.familyds.net, server.familyds.net - 2 entries
9682318181 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-03-03 18:39:18	2025-06-01 18:39:17	*.server.familyds.net, server.familyds.net - 2 entries
9611205918 leaf cert	CN=R11, O=Let's Encrypt, C=US	2025-02-24 18:44:54	2025-05-25 18:44:53	*.server.familyds.net, server.familyds.net - 2 entries
9030636447 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-12-25 01:16:10	2025-03-25 01:16:09	*.server.familyds.net, server.familyds.net - 2 entries
9030636336 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-12-25 01:16:07	2025-03-25 01:16:06	*.server.familyds.net, server.familyds.net - 2 entries
9030630187 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-12-25 01:15:44	2025-03-25 01:15:43	*.server.familyds.net, server.familyds.net - 2 entries
9030635374 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-12-25 01:15:41	2025-03-25 01:15:40	*.server.familyds.net, server.familyds.net - 2 entries
8448722216 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-10-19 22:02:16	2025-01-17 22:02:15	*.server.familyds.net, server.familyds.net - 2 entries
8448722135 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-10-19 22:02:12	2025-01-17 22:02:11	*.server.familyds.net, server.familyds.net - 2 entries
8448098704 leaf cert	CN=E5, O=Let's Encrypt, C=US	2024-10-19 22:01:52	2025-01-17 22:01:51	*.server.familyds.net, server.familyds.net - 2 entries
8448098579 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-10-19 22:01:49	2025-01-17 22:01:48	*.server.familyds.net, server.familyds.net - 2 entries
7986059051 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-08-20 14:24:26	2024-11-18 14:24:25	*.server.familyds.net, server.familyds.net - 2 entries
7986061114 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-08-20 14:24:23	2024-11-18 14:24:22	*.server.familyds.net, server.familyds.net - 2 entries
7986063870 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-08-20 14:23:58	2024-11-18 14:23:57	*.server.familyds.net, server.familyds.net - 2 entries
7986059911 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-08-20 14:23:55	2024-11-18 14:23:54	*.server.familyds.net, server.familyds.net - 2 entries
7546727057 leaf cert	CN=E5, O=Let's Encrypt, C=US	2024-06-21 04:21:40	2024-09-19 04:21:39	*.server.familyds.net, server.familyds.net - 2 entries
7546734282 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-06-21 04:21:37	2024-09-19 04:21:36	*.server.familyds.net, server.familyds.net - 2 entries
7546732918 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-06-21 04:21:17	2024-09-19 04:21:16	*.server.familyds.net, server.familyds.net - 2 entries
7546733448 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-06-21 04:21:14	2024-09-19 04:21:13	*.server.familyds.net, server.familyds.net - 2 entries
7396079210 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-05-27 21:25:57	2024-08-25 21:25:56	server.familyds.net - 1 entries
7396079014 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-05-27 21:25:46	2024-08-25 21:25:45	server.familyds.net - 1 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuer				last 7 days	active	num Certs
CN=R3, O=Let's Encrypt, C=US				0 /0 new	0	10
CN=R10, O=Let's Encrypt, C=US				0	0	9
CN=E5, O=Let's Encrypt, C=US				0	0	7
CN=E6, O=Let's Encrypt, C=US				0	0	7
CN=R11, O=Let's Encrypt, C=US				0	0	6
CN=R12, O=Let's Encrypt, C=US				0	2	4
CN=E7, O=Let's Encrypt, C=US				0	1	3
CN=E8, O=Let's Encrypt, C=US				0	1	1

CRT-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
22390078625 leaf cert	CN=E8, O=Let's Encrypt, C=US	2025-11-11 12:24:06	2026-02-09 12:24:05	*.server.familyds.net, server.familyds.net 2 entries
22390095581 leaf cert	CN=R12, O=Let's Encrypt, C=US	2025-11-11 12:24:01	2026-02-09 12:24:00	*.server.familyds.net, server.familyds.net 2 entries
22390063759 precert	CN=E7, O=Let's Encrypt, C=US	2025-11-11 12:23:28	2026-02-09 12:23:27	*.server.familyds.net, server.familyds.net 2 entries
22390083340 leaf cert	CN=R12, O=Let's Encrypt, C=US	2025-11-11 12:23:24	2026-02-09 12:23:23	*.server.familyds.net, server.familyds.net 2 entries
20916181065 leaf cert	CN=E7, O=Let's Encrypt, C=US	2025-09-10 03:39:32	2025-12-09 04:39:31	*.server.familyds.net, server.familyds.net 2 entries
20916203907 precert	CN=R12, O=Let's Encrypt, C=US	2025-09-10 03:39:28	2025-12-09 04:39:27	*.server.familyds.net, server.familyds.net 2 entries
20915952549 precert	CN=E7, O=Let's Encrypt, C=US	2025-09-10 03:39:01	2025-12-09 04:39:00	*.server.familyds.net, server.familyds.net 2 entries
20915623902 precert	CN=R12, O=Let's Encrypt, C=US	2025-09-10 03:38:57	2025-12-09 04:38:56	*.server.familyds.net, server.familyds.net 2 entries
19557840515 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-07-09 18:50:27	2025-10-07 18:50:26	*.server.familyds.net, server.familyds.net 2 entries
19557856314 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-07-09 18:50:22	2025-10-07 18:50:21	*.server.familyds.net, server.familyds.net 2 entries
19557839884 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-07-09 18:49:57	2025-10-07 18:49:56	*.server.familyds.net, server.familyds.net 2 entries
19557830694 precert	CN=R10, O=Let's Encrypt, C=US	2025-07-09 18:49:52	2025-10-07 18:49:51	*.server.familyds.net, server.familyds.net 2 entries
18308855567 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-05-09 10:59:41	2025-08-07 10:59:40	*.server.familyds.net, server.familyds.net 2 entries
18308856160 precert	CN=R11, O=Let's Encrypt, C=US	2025-05-09 10:59:37	2025-08-07 10:59:36	*.server.familyds.net, server.familyds.net 2 entries
18308845733 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-05-09 10:59:09	2025-08-07 10:59:08	*.server.familyds.net, server.familyds.net 2 entries
18308845834 precert	CN=R11, O=Let's Encrypt, C=US	2025-05-09 10:59:05	2025-08-07 10:59:04	*.server.familyds.net, server.familyds.net 2 entries
17446533752 leaf cert	CN=E5, O=Let's Encrypt, C=US	2025-03-03 17:39:53	2025-06-01 16:39:52	*.server.familyds.net, server.familyds.net 2 entries
16947452442 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-03-03 17:39:47	2025-06-01 16:39:46	*.server.familyds.net, server.familyds.net 2 entries
16990570557 precert	CN=E6, O=Let's Encrypt, C=US	2025-03-03 17:39:22	2025-06-01 16:39:21	*.server.familyds.net, server.familyds.net 2 entries
17446532269 leaf cert	CN=R10, O=Let's Encrypt, C=US	2025-03-03 17:39:18	2025-06-01 16:39:17	*.server.familyds.net, server.familyds.net 2 entries
17351089398 leaf cert	CN=R11, O=Let's Encrypt, C=US	2025-02-24 17:44:54	2025-05-25 16:44:53	*.server.familyds.net, server.familyds.net 2 entries
16232436874 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-12-25 00:16:10	2025-03-25 00:16:09	*.server.familyds.net, server.familyds.net 2 entries
16232419977 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-12-25 00:16:07	2025-03-25 00:16:06	*.server.familyds.net, server.familyds.net 2 entries
16232413976 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-12-25 00:15:44	2025-03-25 00:15:43	*.server.familyds.net, server.familyds.net 2 entries
16232413219 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-12-25 00:15:41	2025-03-25 00:15:40	*.server.familyds.net, server.familyds.net 2 entries
15014016715 precert	CN=E6, O=Let's Encrypt, C=US	2024-10-19 20:02:16	2025-01-17 21:02:15	*.server.familyds.net, server.familyds.net 2 entries
15006658534 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-10-19 20:02:12	2025-01-17 21:02:11	*.server.familyds.net, server.familyds.net 2 entries
15006652439 leaf cert	CN=E5, O=Let's Encrypt, C=US	2024-10-19 20:01:52	2025-01-17 21:01:51	*.server.familyds.net, server.familyds.net 2 entries
15006652366 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-10-19 20:01:49	2025-01-17 21:01:48	*.server.familyds.net, server.familyds.net 2 entries
14250393236 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-08-20 12:24:26	2024-11-18 13:24:25	*.server.familyds.net, server.familyds.net 2 entries
14250432620 leaf cert	CN=R11, O=Let's Encrypt, C=US	2024-08-20 12:24:23	2024-11-18 13:24:22	*.server.familyds.net, server.familyds.net 2 entries
14250391746 leaf cert	CN=E6, O=Let's Encrypt, C=US	2024-08-20 12:23:58	2024-11-18 13:23:57	*.server.familyds.net, server.familyds.net 2 entries
14250383366 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-08-20 12:23:55	2024-11-18 13:23:54	*.server.familyds.net, server.familyds.net 2 entries
13462839362 leaf cert	CN=E5, O=Let's Encrypt, C=US	2024-06-21 02:21:40	2024-09-19 02:21:39	*.server.familyds.net, server.familyds.net 2 entries
13462836499 leaf cert	CN=R10, O=Let's Encrypt, C=US	2024-06-21 02:21:37	2024-09-19 02:21:36	*.server.familyds.net, server.familyds.net 2 entries
13462834592 precert	CN=E6, O=Let's Encrypt, C=US	2024-06-21 02:21:17	2024-09-19 02:21:16	*.server.familyds.net, server.familyds.net 2 entries
13462834672 precert	CN=R10, O=Let's Encrypt, C=US	2024-06-21 02:21:14	2024-09-19 02:21:13	*.server.familyds.net, server.familyds.net 2 entries
13203113494 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-05-27 19:25:57	2024-08-25 19:25:56	server.familyds.net 1 entries
13203109228 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-05-27 19:25:46	2024-08-25 19:25:45	server.familyds.net 1 entries
12719978743 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-04-14 04:02:15	2024-07-13 04:02:14	*.server.familyds.net, server.familyds.net 2 entries
12719978402 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-04-14 04:02:10	2024-07-13 04:02:09	*.server.familyds.net, server.familyds.net 2 entries
12719979241 precert	CN=R3, O=Let's Encrypt, C=US	2024-04-14 04:01:58	2024-07-13 04:01:57	*.server.familyds.net, server.familyds.net 2 entries
12719977408 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-04-14 04:01:54	2024-07-13 04:01:53	*.server.familyds.net, server.familyds.net 2 entries
12652563418 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-04-07 06:04:22	2024-07-06 06:04:21	*.server.familyds.net, server.familyds.net 2 entries
12652557257 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-04-07 06:04:12	2024-07-06 06:04:11	*.server.familyds.net, server.familyds.net 2 entries
12391408491 leaf cert	CN=R3, O=Let's Encrypt, C=US	2024-03-15 09:02:19	2024-06-13 08:02:18	server.familyds.net 1 entries
12391403112 precert	CN=R3, O=Let's Encrypt, C=US	2024-03-15 09:02:16	2024-06-13 08:02:15	server.familyds.net 1 entries

11. Html-Content - Entries

No Html-Content entries found. Only checked if https + status 200/401/403/404

12. Html-Parsing via https://validator.w3.org/nu/

	Type	Message	num found
Url used (first standard-https-result with http status 200): https://server.familyds.net:5001/

Summary
	Good: No non-document-errors
	2 errors
	24 warnings
1.	error	A `meta` element with an `http-equiv` attribute whose value is `X-UA-Compatible` must have a `content` attribute with the value `IE=edge`.	1
2.	error	Stray start tag `noscript`.	1
3.	warning	The `type` attribute is unnecessary for JavaScript resources.	24
Details
	Type	Message + Sample
1	error	A `meta` element with an `http-equiv` attribute whose value is `X-UA-Compatible` must have a `content` attribute with the value `IE=edge`.
		From line 5, column 1 to line 5, column 53
		utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=11" /> <meta
2	error	Stray start tag `noscript`.
		From line 128, column 1 to line 128, column 10
		> </body> <noscript> <div
3	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 101, column 1 to line 101, column 135
		h"></div> <script type="text/javascript" src="webapi/entry.cgi?api=SYNO.Core.Desktop.SessionData&version=1&method=getjs&SynoToken=&v=1691733857"></scri
4	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 102, column 1 to line 102, column 85
		</script> <script type="text/javascript" src="scripts/babel-polyfill/polyfill.js?v=1672898121"></scri
5	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 103, column 1 to line 103, column 90
		</script> <script type="text/javascript" src="scripts/synowebapi.js/synowebapi.min.js?v=1675322301">
6	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 104, column 1 to line 104, column 98
		</script> <script type="text/javascript" src="scripts/synocredential.js/synocredential.min.js?v=1693296629"></scri
7	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 105, column 1 to line 105, column 117
		</script> <script type="text/javascript" src="webapi/entry.cgi?api=SYNO.Core.Desktop.Defs&version=1&method=getjs&v=1695481064"></scri
8	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 106, column 1 to line 106, column 132
		</script> <script type="text/javascript" src="webapi/entry.cgi?api=SYNO.Core.Desktop.JSUIString&version=1&method=getjs&lang=enu&v=1712488115"></scri
9	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 107, column 1 to line 107, column 130
		</script> <script type="text/javascript" src="webapi/entry.cgi?api=SYNO.Core.Desktop.UIString&version=1&method=getjs&lang=enu&v=1739241771"></scri
10	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 108, column 1 to line 108, column 93
		</script> <script type="text/javascript" src="webman/unsupported-browsers/dist/bundle.js?v=1695460792"></scri
11	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 109, column 1 to line 109, column 75
		</script> <script type="text/javascript" src="scripts/noise/noise-c.js?v=1672898121"></scri
12	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 110, column 1 to line 110, column 77
		</script> <script type="text/javascript" src="scripts/noise/constants.js?v=1672898121"></scri
13	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 111, column 1 to line 111, column 73
		</script> <script type="text/javascript" src="scripts/noise/index.js?v=1672898121"></scri
14	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 112, column 1 to line 112, column 74
		</script> <script type="text/javascript" src="scripts/noise/sodium.js?v=1672898121"></scri
15	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 113, column 1 to line 113, column 85
		</script> <script type="text/javascript" src="synoSDSjslib/dist/vendor.bundle.js?v=1687946110"></scri
16	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 114, column 1 to line 114, column 82
		</script> <script type="text/javascript" src="synoSDSjslib/dist/sds.bundle.js?v=1687946110"></scri
17	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 115, column 1 to line 115, column 73
		</script> <script type="text/javascript" src="scripts/vue/vue.min.js?v=1689132810"></scri
18	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 116, column 1 to line 116, column 75
		</script> <script type="text/javascript" src="scripts/vuex/vuex.min.js?v=1664290698"></scri
19	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 117, column 1 to line 117, column 87
		</script> <script type="text/javascript" src="scripts/vue-router/vue-router.min.js?v=1667901351"></scri
20	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 118, column 1 to line 118, column 105
		</script> <script type="text/javascript" src="scripts/syno-vue-components/syno-vue-components.min.js?v=1691459833"></scri
21	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 119, column 1 to line 119, column 92
		</script> <script type="text/javascript" src="webman/taskbar/dist/dsm.taskbar.bundle.js?v=1695460792"></scri
22	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 120, column 1 to line 120, column 87
		</script> <script type="text/javascript" src="webman/sds/dist/dsm.common.bundle.js?v=1696413813"></scri
23	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 121, column 1 to line 121, column 92
		</script> <script type="text/javascript" src="webman/desktop/dist/dsm.desktop.bundle.js?v=1695460792"></scri
24	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 122, column 1 to line 122, column 84
		</script> <script type="text/javascript" src="webman/sds/dist/dsm.sds.bundle.js?v=1695460792"></scri
25	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 123, column 1 to line 123, column 88
		</script> <script type="text/javascript" src="webman/login/dist/dsm.login.bundle.js?v=1695460792"></scri
26	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 124, column 1 to line 124, column 88
		</script> <script type="text/javascript" src="webman/entry/dist/dsm.entry.bundle.js?v=1695460792"></scri

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

No NameServer - IP address - Informations found

14. CAA - Entries

Domainname	flag	Name	Value	∑ Queries
server.familyds.net	0		no CAA entry found	1
familyds.net	5	issue	letsencrypt.org	1
net	0		no CAA entry found	1

15. TXT - Entries

Domainname	Status	∑ Queries
server.familyds.net	ok	1
_acme-challenge.server.familyds.net	missing entry or wrong length	1
_acme-challenge.server.familyds.net.server.familyds.net	Name Error - The domain name does not exist	1

16. DomainService - Entries

No DomainServiceEntries entries found

17. Cipher Suites

Summary
Domain	IP	Port	num Ciphers	time	Std.Protocol	Forward Secrecy
server.familyds.net	91.202.27.175	5001	6 Ciphers	57.47 sec		0 without, 6 FS	100.00 %
Complete		1	6 Ciphers 6.00 Ciphers/Check	57.47 sec	57.47 sec/Check	0 without, 6 FS	100.00 %

Details
Domain	IP	Port	Cipher (OpenSsl / IANA)
server.familyds.net	91.202.27.175	5001	ECDHE-ECDSA-CHACHA20-POLY1305		(Recommended)	TLSv1.2	0xCC,0xA9	FS
6 Ciphers, 57.47 sec			TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
			ECDH		ECDSA	CHACHA20/POLY1305(256)	AEAD
			ECDHE-ECDSA-AES256-GCM-SHA384		(Recommended)	TLSv1.2	0xC0,0x2C	FS
			TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
			ECDH		ECDSA	AESGCM(256)	AEAD
			ECDHE-ECDSA-AES128-GCM-SHA256		(Recommended)	TLSv1.2	0xC0,0x2B	FS
			TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
			ECDH		ECDSA	AESGCM(128)	AEAD
			ECDHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xA8	FS
			TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			ECDH		RSA	CHACHA20/POLY1305(256)	AEAD
			ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=b607d36a-f635-4d2a-a56a-7c42a8ff3c17

Last Result: https://check-your-website.server-daten.de/?q=server.familyds.net%3A5001 - 2025-12-09 12:36:38

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=server.familyds.net%3A5001" target="_blank">Check this Site: server.familyds.net%3A5001</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=server.familyds.net:5001

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

12. Html-Parsing via https://validator.w3.org/nu/

Summary

Details

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks