Check DNS, Urls + Redirects, Certificates and Content of your Website


 

 

N

 

No trusted Certificate, 2 invalid Headers

 

Checked:
29.11.2024 19:41:14

 

Older results

No older results found

 

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
200.124.203.117
A
200.124.203.117
Montevideo/Montevideo Department/Uruguay (UY) - ZONAMERICA
Hostname: 200.124.203.117.zfm.com.uy
yes


 

2. DNSSEC

 

No DNSSEC - Informations found

 

3. Name Servers

 

No Nameserver entries found

 

4. SOA-Entries

 

No SOA entries found

5. Screenshots

Startaddress: https://almuerzos.adium.com.uy/Account/Login, address used: https://almuerzos.adium.com.uy/Account/Login, Screenshot created 2024-11-29 19:42:07 +00:0 url is insecure, certificate invalid

 

Mobil (412px x 732px)

 

1063 milliseconds

 

Screenshot mobile - https://almuerzos.adium.com.uy/Account/Login
Mobil + Landscape (732px x 412px)

 

1090 milliseconds

 

Screenshot mobile landscape - https://almuerzos.adium.com.uy/Account/Login
Screen (1280px x 1680px)

 

1280 milliseconds

 

Screenshot Desktop - https://almuerzos.adium.com.uy/Account/Login

 

Mobile- and other Chrome-Checks


widthheight
visual Viewport412732
content Size412732

 

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

 

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://200.124.203.117/
200.124.203.117
301
https://almuerzos.adium.com.uy/
Html is minified: 103.02 %
0.773
E
Date: Fri, 29 Nov 2024 18:38:55 GMT
Server: Apache/2.4.62,(Rocky Linux),OpenSSL/3.2.2
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Location: https://almuerzos.adium.com.uy/
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1

• https://almuerzos.adium.com.uy/

302
https://almuerzos.adium.com.uy/Account/Login

3.344
B-
Server: rhino-core-shield
Date: Fri, 29 Nov 2024 18:41:43 GMT
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains,max-age=2592000
Location: /Account/Login
X-Powered-By: ASP.NET
Via: 1.1 google
Alt-Svc: clear=":0"; ma=0
Content-Length: 0

• https://200.124.203.117/
200.124.203.117
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 103.96 %
Other inline scripts (∑/total): 0/0
9.040
N
Not Found
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 29 Nov 2024 18:41:16 GMT
Server: Microsoft-HTTPAPI/2.0
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Content-Type: text/html; charset=us-ascii
Content-Length: 315

• https://almuerzos.adium.com.uy/Account/Login
gzip used - 1593 / 4674 - 65.92 %
Inline-JavaScript (∑/total): 1/250 Inline-CSS (∑/total): 0/0
200

Html is minified: 132.60 %
Other inline scripts (∑/total): 0/0
2.613
I-
Server: rhino-core-shield
Date: Fri, 29 Nov 2024 18:41:47 GMT
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN,SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains,max-age=2592000
Cache-Control: no-store, no-cache
Pragma: no-cache
X-Powered-By: ASP.NET
Set-Cookie: .AspNetCore.Identity.Application=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax,Identity.External=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax,Identity.TwoFactorUserId=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax,.AspNetCore.Antiforgery.2AI3wenIwVY=CfDJ8AxkB3TSmdNGguoGQM7dakmev8XRittB2BAydlC_-bOskCwk7zwHIHSxC5d3eB_A5TglLIzkHdwx-UL6_Lf5wopSf_eUxfaly9q_b7CJ3Bii8CZBITHOPpmNQ3BbqbHDbC3KEqEms2csZOH2I5v6dEg; path=/; samesite=strict; httponly
Via: 1.1 google
Alt-Svc: clear=":0"; ma=0
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Content-Encoding: gzip
Content-Length: 1593

• http://200.124.203.117/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200.124.203.117
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
301
https://almuerzos.adium.com.uy/
Html is minified: 103.02 %
Other inline scripts (∑/total): 0/0
0.583
E
Visible Content:
Date: Fri, 29 Nov 2024 18:39:06 GMT
Server: Apache/2.4.62,(Rocky Linux),OpenSSL/3.2.2
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Location: https://almuerzos.adium.com.uy/
Content-Length: 239
Content-Type: text/html; charset=iso-8859-1

• https://200.124.203.117/
200.124.203.117
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 103.96 %
Other inline scripts (∑/total): 0/0
7.853
N
Not Found
Certificate error: RemoteCertificateNameMismatch
Date: Fri, 29 Nov 2024 18:41:27 GMT
Server: Microsoft-HTTPAPI/2.0
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Content-Type: text/html; charset=us-ascii
Content-Length: 315

 

7. Comments


1. General Results, most used to calculate the result

Aname "200.124.203.117" is ipv4 address, public suffix is not defined
AGood: All ip addresses are public addresses
Ahttps://almuerzos.adium.com.uy/
302
https://almuerzos.adium.com.uy/Account/Login
Correct redirect https to https
AGood: destination is https
AGood - only one version with Http-Status 200
AGood: one preferred version: non-www is preferred
AGood: No cookie sent via http.
AGood: Every cookie has a SameSite Attribute with a correct value Strict/Lax/None
AGood: every https has a Strict Transport Security Header
AGood: HSTS max-age is long enough, 63072000 seconds = 730 days
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Bhttps://almuerzos.adium.com.uy/
302
max-age=63072000; includeSubDomains,max-age=2592000
Critical: HSTS-Header has Parse-Errors. Comma found, but Comma not allowed. Perhaps more then one HSTS-Header., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://almuerzos.adium.com.uy/Account/Login
200
max-age=63072000; includeSubDomains,max-age=2592000
Critical: HSTS-Header has Parse-Errors. Comma found, but Comma not allowed. Perhaps more then one HSTS-Header., Unknown directive found. Only max-age (with value), includeSubdomains or preload allowed.
Bhttps://almuerzos.adium.com.uy/Account/Login
200
.AspNetCore.Identity.Application=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax
Cookie sent via https, but not marked as secure
Bhttps://almuerzos.adium.com.uy/Account/Login
200
Identity.External=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax
Cookie sent via https, but not marked as secure
Bhttps://almuerzos.adium.com.uy/Account/Login
200
Identity.TwoFactorUserId=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax
Cookie sent via https, but not marked as secure
Bhttps://almuerzos.adium.com.uy/Account/Login
200
.AspNetCore.Antiforgery.2AI3wenIwVY=CfDJ8AxkB3TSmdNGguoGQM7dakmev8XRittB2BAydlC_-bOskCwk7zwHIHSxC5d3eB_A5TglLIzkHdwx-UL6_Lf5wopSf_eUxfaly9q_b7CJ3Bii8CZBITHOPpmNQ3BbqbHDbC3KEqEms2csZOH2I5v6dEg; path=/; samesite=strict; httponly
Cookie sent via https, but not marked as secure
Ehttp://200.124.203.117/ 200.124.203.117
301
https://almuerzos.adium.com.uy/
Wrong redirect one domain http to other domain https. First redirect to https without new dns query, so the server can send the HSTS header. That's fundamental using HSTS (Http Strict Transport Security). First step: Add correct redirects http ⇒ https. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop. Then recheck your domain, should be Grade C. There is the rule to select one https version as preferred version.
Ihttps://almuerzos.adium.com.uy/Account/Login
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Mhttps://200.124.203.117/ 200.124.203.117
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://200.124.203.117/ 200.124.203.117
404

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://200.124.203.117/ 200.124.203.117
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nhttps://200.124.203.117/ 200.124.203.117
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
BNo _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.200.124.203.117

2. Header-Checks (Cross-Origin-* headers are alpha - started 2024-06-05)

A200.124.203.117 200.124.203.117
X-Content-Type-Options
Ok: Header without syntax errors found: nosniff
A
X-Frame-Options
Ok: Header without syntax errors found: SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
Aalmuerzos.adium.com.uy
X-Content-Type-Options
Ok: Header without syntax errors found: nosniff
F
X-Frame-Options
Critical: Header with syntax errors found: SAMEORIGIN,SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN,SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
F

Critical: Duplicated values found. Looks like the page sends multiple headers with the same name. SAMEORIGIN,SAMEORIGIN
F

Critical: Unknown token found. Standard-token with additional characters are not defined. SAMEORIGIN,SAMEORIGIN
F

Critical: Unknown token found. Standard-token with additional characters are not defined. SAMEORIGIN,SAMEORIGIN
A
X-Xss-Protection
Ok: Header without syntax errors found: 1; mode=block
B

Info: Header is deprecated. May not longer work in modern browsers. 1; mode=block
F200.124.203.117 200.124.203.117
Content-Security-Policy
Critical: Missing Header:
F200.124.203.117 200.124.203.117
Referrer-Policy
Critical: Missing Header:
F200.124.203.117 200.124.203.117
Permissions-Policy
Critical: Missing Header:
B200.124.203.117 200.124.203.117
Cross-Origin-Embedder-Policy
Info: Missing Header
B200.124.203.117 200.124.203.117
Cross-Origin-Opener-Policy
Info: Missing Header
B200.124.203.117 200.124.203.117
Cross-Origin-Resource-Policy
Info: Missing Header
Falmuerzos.adium.com.uy
Content-Security-Policy
Critical: Missing Header:
Falmuerzos.adium.com.uy
Referrer-Policy
Critical: Missing Header:
Falmuerzos.adium.com.uy
Permissions-Policy
Critical: Missing Header:
Balmuerzos.adium.com.uy
Cross-Origin-Embedder-Policy
Info: Missing Header
Balmuerzos.adium.com.uy
Cross-Origin-Opener-Policy
Info: Missing Header
Balmuerzos.adium.com.uy
Cross-Origin-Resource-Policy
Info: Missing Header

3. DNS- and NameServer - Checks


4. Content- and Performance-critical Checks

Fatal: All checks of /.well-known/acme-challenge/random-filename have a redirect, destination doesn't have the random filename. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
https://almuerzos.adium.com.uy/Account/Login
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://almuerzos.adium.com.uy/Account/Login
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
https://almuerzos.adium.com.uy/Account/Login
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 4 script elements without defer/async.
AGood: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 7 external CSS / JavaScript files found
AGood: All images with internal compression not compressed. Some Images (.png, .jpg, .jpeg, .webp, .gif) are already compressed, so an additional compression isn't helpful. 1 images (type image/png, image/jpg, image/jpeg, image/webp, image/gif) found without additional Compression. Not required because these images are already compressed
Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 6 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 1 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 7 complete.
Warning: Images with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 1 image files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 1 complete.
AGood: All checked attribute values are enclosed in quotation marks (" or ').
Wrong: img-elements without alt-attribute or empty alt-attribute found. The alt-attribute ("alternative") is required and should describe the img. So Screenreader and search engines are able to use these informations.: 1 img-elements without alt-attribute, 0 img-elements with empty alt-attribute found.
https://almuerzos.adium.com.uy/
302
Strict-Transport-Security: max-age=63072000; includeSubDomains,max-age=2592000
Parse Error - Header can't be parsed
https://almuerzos.adium.com.uy/Account/Login
200
Strict-Transport-Security: max-age=63072000; includeSubDomains,max-age=2592000
Parse Error - Header can't be parsed
https://200.124.203.117/ 200.124.203.117
404
9.040 seconds
Warning: 404 needs more then one second
https://200.124.203.117/ 200.124.203.117
404
7.853 seconds
Warning: 404 needs more then one second
AInfo: Different Server-Headers found
ADuration: 60143 milliseconds, 60.143 seconds

 

8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
200.124.203.117
200.124.203.117
443
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
200.124.203.117
200.124.203.117
443
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.adium.com.uy


2CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester


3CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, C=US, ST=New Jersey


almuerzos.adium.com.uy
almuerzos.adium.com.uy
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

almuerzos.adium.com.uy
almuerzos.adium.com.uy
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain - incomplete

1CN=*.adium.com.uy


2CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester


3CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, C=US, ST=New Jersey


almuerzos.adium.com.uy
almuerzos.adium.com.uy
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

almuerzos.adium.com.uy
almuerzos.adium.com.uy
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.adium.com.uy


2CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester


3CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, C=US, ST=New Jersey


200.124.203.117
200.124.203.117
443
name does not match
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

200.124.203.117
200.124.203.117
443
name does not match
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
no http/2 via ALPN 
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
no http/2 via ALPN
Cert sent without SNI
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=*.adium.com.uy


2CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester


3CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, C=US, ST=New Jersey

 

9. Certificates

1.
1.
CN=*.adium.com.uy
23.04.2024
25.05.2025
expires in 174 days
*.adium.com.uy, adium.com.uy - 2 entries
1.
1.
CN=*.adium.com.uy
23.04.2024

25.05.2025
expires in 174 days


*.adium.com.uy, adium.com.uy - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00BBC3864BF16DA481C76A9FABA77A6F93
Thumbprint:F657EE9DF742498DF914FDD0C39CDAE6AB37CCC0
SHA256 / Certificate:RjzRci/7xmCqpPuX5Ljg3oN7B506YnKoYP9COQ4k23k=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):820b8dbf19fc6e3e20c7e41b6764f105e0128dafdee153cf9bbb6937fedb8a28
SHA256 hex / Subject Public Key Information (SPKI):820b8dbf19fc6e3e20c7e41b6764f105e0128dafdee153cf9bbb6937fedb8a28 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.sectigo.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=*.adium.com.uy
23.04.2024
25.05.2025
expires in 174 days
*.adium.com.uy, adium.com.uy - 2 entries

2.
CN=*.adium.com.uy
23.04.2024

25.05.2025
expires in 174 days


*.adium.com.uy, adium.com.uy - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:00BBC3864BF16DA481C76A9FABA77A6F93
Thumbprint:F657EE9DF742498DF914FDD0C39CDAE6AB37CCC0
SHA256 / Certificate:RjzRci/7xmCqpPuX5Ljg3oN7B506YnKoYP9COQ4k23k=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):820b8dbf19fc6e3e20c7e41b6764f105e0128dafdee153cf9bbb6937fedb8a28
SHA256 hex / Subject Public Key Information (SPKI):820b8dbf19fc6e3e20c7e41b6764f105e0128dafdee153cf9bbb6937fedb8a28 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.sectigo.com
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




3.
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB
02.11.2018
01.01.2031
expires in 2221 days


3.
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB
02.11.2018

01.01.2031
expires in 2221 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:7D5B5126B476BA11DB74160BBC530DA7
Thumbprint:33E4E80807204C2B6182A3A14B591ACD25B5F0DB
SHA256 / Certificate:f6T/aOwEqZ11KNUIX5SQf00d0cU4G6zcgy7VyWAhRnY=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):e1ae9c3de848ece1ba72e0d991ae4d0d9ec547c6bad1dddab9d6beb0a7e0e0d8
SHA256 hex / Subject Public Key Information (SPKI):e1ae9c3de848ece1ba72e0d991ae4d0d9ec547c6bad1dddab9d6beb0a7e0e0d8
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.usertrust.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




4.
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB
02.11.2018
01.01.2031
expires in 2221 days


4.
CN=Sectigo RSA Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, S=Greater Manchester, C=GB
02.11.2018

01.01.2031
expires in 2221 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:7D5B5126B476BA11DB74160BBC530DA7
Thumbprint:33E4E80807204C2B6182A3A14B591ACD25B5F0DB
SHA256 / Certificate:f6T/aOwEqZ11KNUIX5SQf00d0cU4G6zcgy7VyWAhRnY=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):e1ae9c3de848ece1ba72e0d991ae4d0d9ec547c6bad1dddab9d6beb0a7e0e0d8
SHA256 hex / Subject Public Key Information (SPKI):e1ae9c3de848ece1ba72e0d991ae4d0d9ec547c6bad1dddab9d6beb0a7e0e0d8
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.usertrust.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




5.
CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
01.02.2010
19.01.2038
expires in 4796 days


5.
CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
01.02.2010

19.01.2038
expires in 4796 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:01FD6D30FCA3CA51A81BBC640E35032D
Thumbprint:2B8F1B57330DBBA2D07A6C51F70EE90DDAB9AD8E
SHA256 / Certificate:55PJsC/YqhPiHDEiisywgRlkO3SciYlksXRtRsPUy9I=
SHA256 hex / Cert (DANE * 0 1):e793c9b02fd8aa13e21c31228accb08119643b749c898964b1746d46c3d4cbd2
SHA256 hex / PublicKey (DANE * 1 1):c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SHA256 hex / Subject Public Key Information (SPKI):c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:





6.
CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
12.03.2019
01.01.2029
expires in 1491 days


6.
CN=USERTrust RSA Certification Authority, O=The USERTRUST Network, L=Jersey City, S=New Jersey, C=US
12.03.2019

01.01.2029
expires in 1491 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:3972443AF922B751D7D36C10DD313595
Thumbprint:D89E3BD43D5D909B47A18977AA9D5CE36CEE184C
SHA256 / Certificate:aLnHYSGaWx8BMXhEdGZdthu9sQngDwXKn3QkTuX19Ss=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SHA256 hex / Subject Public Key Information (SPKI):c784333d20bcd742b9fdc3236f4e509b8937070e73067e254dd3bf9c45bf4dde
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.comodoca.com
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




7.
CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB
01.01.2004
01.01.2029
expires in 1491 days


7.
CN=AAA Certificate Services, O=Comodo CA Limited, L=Salford, S=Greater Manchester, C=GB
01.01.2004

01.01.2029
expires in 1491 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:01
Thumbprint:D1EB23A46D17D68FD92564C2F1F1601764D8E349
SHA256 / Certificate:16eg+11+JzHXcelITrze9x1fDD4KKUh4K8g+4OppnvQ=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):bd153ed7b0434f6886b17bce8bbe84ed340c7132d702a8f4fa318f756ecbd6f3
SHA256 hex / Subject Public Key Information (SPKI):bd153ed7b0434f6886b17bce8bbe84ed340c7132d702a8f4fa318f756ecbd6f3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




 

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found

 

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

 

11. Html-Content - Entries

Summary


Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://200.124.203.117/
200.124.203.117
meta
other
1

0


0
0
0

https://almuerzos.adium.com.uy/Account/Login
a

1

0


0
0
0


form

2

0
1
0
0
0
0


img

1
3,098 Bytes
0
1
0
0
0
0


link
stylesheet
3
29,950 Bytes
0
2
1
1
0
0
-1

meta
other
3

0


0
0
0


script

4
146,153 Bytes
4
4
0
0
0
0

https://200.124.203.117/
200.124.203.117
meta
other
1

0


0
0
0

 

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://200.124.203.117/
200.124.203.117
meta
Content-Type
text/html; charset=us-ascii


1
ok















meta
Content-Type
text/html; charset=us-ascii


1
ok














https://almuerzos.adium.com.uy/Account/Login

a

/Account/ForgotPassword


1
ok















form
post



1
ok















form
post
/Account/ExternalLogin
405
Method Not Allowed
1
ok

X-Content-Type-Options nosniff found





0 Bytes








img
src
/images/logo.png
200

1
ok
no alt-Attributeimage/png
X-Content-Type-Options nosniff found





No Cache-Control header
No Compression - 3098 Bytes






ETag: "1dab29c89f49e1a"



link
stylesheet
/css/login.css
200

1
ok
text/css
X-Content-Type-Options nosniff found





No Cache-Control - header
Compression (gzip): 1702/6345 Bytes






ETag: W/"1dab29c89f48ac9"

local SRI possible, possible hash-values:

 

sha256-HrE2KsBN7vLG83MpbmD+fpALv1z8gLS4k3/gWry8poQ=
sha384-PTZeNj3dkV77M5M84A56N8W8+sU0Zy5v9Cf0vqQWDtzz8uLVDVqPxuEr3EV7JO2r
sha512-OuqEdLd24rFnAxTD4V6GgyFrNYJ8Rw7Nq9zNcbmfkv0rNA4QVCKqKaPOVarNZQAr0258tWy12QGdCetAv4yY8A==

 

<link rel="stylesheet" href="/css/login.css" crossorigin="anonymous" integrity="sha256-HrE2KsBN7vLG83MpbmD+fpALv1z8gLS4k3/gWry8poQ=" />



link
stylesheet
/lib/bootstrap/dist/css/bootstrap.css
200

1
ok
text/css
X-Content-Type-Options nosniff found





No Cache-Control - header
Compression (gzip): 26542/202535 Bytes






ETag: W/"1dab29c89f78527"

local SRI possible, possible hash-values:

 

sha256-O21qVUw0waySsPCf7STmiG9x8lppjaEy6M+kdOPNPco=
sha384-Dbl4EQsMMvrmDB1VQRqaxnuQM5CZWinnsvPtQAlgqNVeK8mipRjZzAb49/jZO2uV
sha512-0ERfsrmh0XA8kHTfHcluXavbumob3/h6tsMO7NFBm8KMyJwOVc2hItapgiX4yjqBTvsqot+JMXtoq5tWkhq4dw==

 

<link rel="stylesheet" href="/lib/bootstrap/dist/css/bootstrap.css" crossorigin="anonymous" integrity="sha256-O21qVUw0waySsPCf7STmiG9x8lppjaEy6M+kdOPNPco=" />



link
stylesheet
https://fonts.googleapis.com/css?family=Josefin+Sans:300,400,700|Open+Sans&display=swap
200

1
ok
text/css; charset=utf-8
X-Content-Type-Options nosniff found





Compression (gzip): 1706/10027 Bytes






Server-Header Access-Control-Allow-Origin: *
Cross-Origin Resource Sharing (CORS) supported

missing crossorigin=anonymous|use-credentials and integrity - attribute, possible hash-values:

 

sha256-qsB4XvToMn2bpgGMqjjIXYcZmBTLaMIfVTcuij2ork0=
sha384-B8TTJRyZUNzFDNPCI1rRcEfBuKkr9m5Refh/FV6Yd8cTF3/9So/WNjoFDCrQ3eMM
sha512-Z3bFH2OyAxByC5LkHV0hfFpqQ0vOvjG8I/4xPMIaYCa6OBq13L/ToRFMnqoHO1h4xjkawT+xLoJo+kBWTlHP3g==

 

<link rel="stylesheet" href="https://fonts.googleapis.com/css?family=Josefin+Sans:300,400,700|Open+Sans&display=swap" crossorigin="anonymous" integrity="sha256-qsB4XvToMn2bpgGMqjjIXYcZmBTLaMIfVTcuij2ork0=" />



meta
charset
utf-8


1
ok















meta
X-UA-Compatible
IE=edge


1
ok















meta
viewport
width=device-width, initial-scale=1.0


1
ok















script
src
/js/site.js?v=AcKEBKscoTZnbzMxn_WY54h1V_ZbJ7g-WF89i76J8FM
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


No Cache-Control - header
Compression (gzip): 1646/8086 Bytes






ETag: W/"1dab29c89f48d96"

local SRI possible, possible hash-values:

 

sha256-AcKEBKscoTZnbzMxn/WY54h1V/ZbJ7g+WF89i76J8FM=
sha384-Fla83+f62mM+AFE4x9tc1MnXekY9OAyhxZZUPTCG9mi0aOl6F8xyvLXDvLXYMH4Q
sha512-XkR7LELkMx6qkc2RV3etyVuEPriamoJd8F7so4sVuY3w2jIPijXvVRwWKm1KrtRSwuKxIWB1tylHoYFrL98sfQ==

 

<script src="/js/site.js?v=AcKEBKscoTZnbzMxn_WY54h1V_ZbJ7g-WF89i76J8FM" crossorigin="anonymous" integrity="sha256-AcKEBKscoTZnbzMxn/WY54h1V/ZbJ7g+WF89i76J8FM=" />



script
src
/lib/bootstrap/dist/js/bootstrap.bundle.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


No Cache-Control - header
Compression (gzip): 49546/229924 Bytes






ETag: W/"1dab29c89f71024"

local SRI possible, possible hash-values:

 

sha256-srIwGYgANrjaabGVuC3G7O0jv1Xh3Kt7dIc3/P0Ebf0=
sha384-g86WYhyItvbQtKWniFOXTG74bzk06B5dzzP/MIso32+qx4rabsuCea6XTWuHQ9tS
sha512-h52gwoWac2EJWwCBcaHGK6sec/zbjoC4czJ8LUqGRHNCTWLVLT9KSa1EeNcQ2L/M0/nZOiwwHCG1saZ+uvH7/w==

 

<script src="/lib/bootstrap/dist/js/bootstrap.bundle.js" crossorigin="anonymous" integrity="sha256-srIwGYgANrjaabGVuC3G7O0jv1Xh3Kt7dIc3/P0Ebf0=" />



script
src
/lib/jquery/dist/jquery.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


No Cache-Control - header
Compression (gzip): 87507/303699 Bytes






ETag: W/"1dab29c8b211d53"

local SRI possible, possible hash-values:

 

sha256-WoKHkbUuR0q1F7aIBUVmxixCQakDbEGlqKLRCKIms+A=
sha384-Hz9eXTcfE71CkFyh61w8CqT0ZJRDw3AgzzUTWbcOg2oUCwvgT3ggEbUBX84mYmuC
sha512-3h0WicCpN5ujtIysKAFSvRMrbG18ajEi4MIev1b+EpYsC5v7wpFhRLEb3r0MJlhh0Ynt8OUbS2ILUDnrAYSPMQ==

 

<script src="/lib/jquery/dist/jquery.js" crossorigin="anonymous" integrity="sha256-WoKHkbUuR0q1F7aIBUVmxixCQakDbEGlqKLRCKIms+A=" />



script
src
/lib/notify/notify.min.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript
X-Content-Type-Options nosniff found


This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


No Cache-Control - header
Compression (gzip): 7454/13780 Bytes






ETag: W/"1dab29c8b258ad4"

local SRI possible, possible hash-values:

 

sha256-I++/1nqPBafgd4eTJsC/2NswzKU7rsks7EvUwDtDEEo=
sha384-TQs+VtMcxqoTlw0ecLYmRCiwW/AG3xHKNxTFkmiPrxDaTF5igPHeunjBtHRXlBVl
sha512-dEi7Bj/ni8tOfaQK8CqXjnvNK1lUAl6JSCpYdHMCNb1xDEZq5sDvyZ8+TO2pjhRXPwitNbEnEG8FQQfB/vkotA==

 

<script src="/lib/notify/notify.min.js" crossorigin="anonymous" integrity="sha256-I++/1nqPBafgd4eTJsC/2NswzKU7rsks7EvUwDtDEEo=" />


200.124.203.117
meta
Content-Type
text/html; charset=us-ascii


1
ok















meta
Content-Type
text/html; charset=us-ascii


1
ok














 

12. Html-Parsing via https://validator.nu/ / https://validator.w3.org/nu/ (started 2024-09-28, 09:00, alpha)

  Unfortunately, there are differences between the first used validator.nu and validator.w3.org/nu/ - switched to validator.w3.org/nu/. Looks like some error messages (link - fetchpriority attribute) of validator.nu are obsolete, not seen in the w3.org-version and not found in the current specification: link may have a fetchpriority attribute.

Url used (first standard-https-result with http status 200): https://almuerzos.adium.com.uy/Account/Login

Summary

Good: No non-document-errors
2 errors
1 warnings

TypeMessagenum found
1.errorBad value https://fonts.googleapis.com/css?family=Josefin+Sans:300,400,700|Open+Sans&display=swap for attribute href on element link: Illegal character in query: | is not allowed.1
2.errorAn img element must have an alt attribute, except under certain conditions. For details, consult guidance on providing text alternatives for images.1
3.warningConsider adding a lang attribute to the html start tag to declare the language of this document.1

Details


TypeMessage + Sample
1errorBad value https://fonts.googleapis.com/css?family=Josefin+Sans:300,400,700|Open+Sans&display=swap for attribute href on element link: Illegal character in query: | is not allowed.

From line 8, column 5 to line 8, column 122

itle> <link href="https://fonts.googleapis.com/css?family=Josefin+Sans:300,400,700|Open+Sans&display=swap" rel="stylesheet"> <
2errorAn img element must have an alt attribute, except under certain conditions. For details, consult guidance on providing text alternatives for images.

From line 15, column 13 to line 15, column 42

<img src="/images/logo.png" />
3warningConsider adding a lang attribute to the html start tag to declare the language of this document.

From line 1, column 16 to line 2, column 6

TYPE html> <html> <head

 

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

 

 

No NameServer - IP address - Informations found

 

14. CAA - Entries

No CAA entries found

 

15. TXT - Entries

No TXT entries found

 

16. DomainService - Entries

No DomainServiceEntries entries found

 

 

17. Cipher Suites

No results

 

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

 

 

Permalink: https://check-your-website.server-daten.de/?i=3b222d2b-5069-4c23-b4ec-389a48cbe5a4

 

Last Result: https://check-your-website.server-daten.de/?q=200.124.203.117 - 2024-11-29 19:41:14

 

Do you like this page? Support this tool, add a link on your page:

 

<a href="https://check-your-website.server-daten.de/?q=200.124.203.117" target="_blank">Check this Site: 200.124.203.117</a>

 

 

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

 

QR-Code of this page - https://check-your-website.server-daten.de/?d=200.124.203.117