Check DNS, Urls + Redirects, Certificates and Content of your Website




J

Control Panel Problem

Checked:
09.09.2019 15:32:54


Older results

No older results found


1. IP-Addresses

HostTIP-Addressis auth.∑ Queries∑ Timeout
2607:5300:120:25a::
AAAA
2607:5300:120:25a::
Montreal/Quebec/Canada (CA) - OVH SAS

yes



2. DNSSEC


No DNSSEC - Informations found


3. Name Servers


No Nameserver entries found


4. SOA-Entries


No SOA entries found

5. Url-Checks


:

:
Domainname Http-StatusredirectSec.G
• http://[2607:5300:0120:025a:0000:0000:0000:0000]/
2607:5300:120:25a::
200

Html is minified: 100.00 %
0.210
H
Date: Mon, 09 Sep 2019 13:32:58 GMT
Server: Apache
Last-Modified: Wed, 30 Jan 2019 02:06:03 GMT
Accept-Ranges: bytes
Content-Length: 163
Connection: close
Content-Type: text/html

• https://[2607:5300:0120:025a:0000:0000:0000:0000]/
2607:5300:120:25a::
200

Html is minified: 100.00 %
4.003
J
Certificate error: RemoteCertificateNameMismatch
Date: Mon, 09 Sep 2019 13:32:58 GMT
Server: Apache
Last-Modified: Wed, 30 Jan 2019 02:06:03 GMT
Accept-Ranges: bytes
Content-Length: 163
Connection: close
Content-Type: text/html

• http://[2607:5300:0120:025a:0000:0000:0000:0000]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2607:5300:120:25a::
404

Html is minified: 129.53 %
0.240
A
Not Found
Visible Content:
Date: Mon, 09 Sep 2019 13:33:02 GMT
Server: Apache
Accept-Ranges: bytes
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html

6. Comments

Aname "2607:5300:120:25a::" is ipv6 address, public suffix is not defined
Agood: All ip addresses are public addresses
Agood: one preferred version: non-www is preferred
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):0 complete Content-Type - header (3 urls)
http://[2607:5300:0120:025a:0000:0000:0000:0000]/ 2607:5300:120:25a::


Url with incomplete Content-Type - header - missing charset
https://[2607:5300:0120:025a:0000:0000:0000:0000]/ 2607:5300:120:25a::


Url with incomplete Content-Type - header - missing charset
http://[2607:5300:0120:025a:0000:0000:0000:0000]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2607:5300:120:25a::


Url with incomplete Content-Type - header - missing charset
Bhttps://[2607:5300:0120:025a:0000:0000:0000:0000]/ 2607:5300:120:25a::
200

Missing HSTS-Header
CError - more then one version with Http-Status 200. After all redirects, all users (and search engines) should see the same https url: Non-www or www, but not both with http status 200.
HFatal error: http result with http-status 200, no encryption. Add a redirect http ⇒ https, so every connection is secure. Perhaps in your port 80 vHost something like "RewriteEngine on" + "RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,QSA,R=permanent]" (two rows, without the "). Don't add this in your port 443 vHost, that would create a loop.
Ihttp://[2607:5300:0120:025a:0000:0000:0000:0000]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2607:5300:120:25a::
404

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Not used to calculate the result because it's a http or /.well-known/acme-challenge - check. But listet so you should fix it.
Jhttps://[2607:5300:0120:025a:0000:0000:0000:0000]/ 2607:5300:120:25a::
200

Fatal: Control Panel error message. Ask your hoster. There is a cPanel-Redirect to the SORRY-page /cgi-sys/defaultwebpage.cgi with additional instructions.
Nhttps://[2607:5300:0120:025a:0000:0000:0000:0000]/ 2607:5300:120:25a::
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
OOld connection: SHA1 as Hash Algorithm is deprecated. Switch to SHA256 or SHA384. If your certificate has SHA256, first check your domain via ssllabs.com and update weak Cipher Suites. Forward Secrecy support is required. The part "Cipher Suites" should have a preference. First Cipher Suite with SHA instead of SHA256 or higher - that's the problem, change that. If that doesn't help, check if there is an old Firewall / router or something else, that supports only SHA1. Update that component.
AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
ADuration: 7440 milliseconds, 7.440 seconds


7. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
[2607:5300:0120:025a:0000:0000:0000:0000]
2607:5300:120:25a::
443
name does not match
Tls12
ECDH Ephermal
384
Aes256
256
Sha1
supported
weak
[2607:5300:0120:025a:0000:0000:0000:0000]
2607:5300:120:25a::
443
name does not match
Tls12
ECDH Ephermal
384
Aes256
256
Sha1
supported
weak
Chain (complete)
1CN=ns527072.ip-158-69-242.net, OU=PositiveSSL

2CN="cPanel, Inc. Certification Authority", O="cPanel, Inc.", L=Houston, C=US, ST=TX

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


8. Certificates

1.
1.
CN=ns527072.ip-158-69-242.net, OU=PositiveSSL, OU=Domain Control Validated
09.09.2019
09.09.2020
expires in 353 days
ns527072.ip-158-69-242.net, www.ns527072.ip-158-69-242.net - 2 entries
1.
1.
CN=ns527072.ip-158-69-242.net, OU=PositiveSSL, OU=Domain Control Validated
09.09.2019

09.09.2020
expires in 353 days
ns527072.ip-158-69-242.net, www.ns527072.ip-158-69-242.net - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:2BEB8047B77219F699CC9E32A8F1B65B
Thumbprint:E2B221A560EECEF0CE4B79C25D9099365E75D3AC
SHA256 / Certificate:f7J8ewKIq2MlHCEj2jmUmIW0jA+koEibK8e+ZiTGgoY=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):c6ed473416367d24b769fbc586274bff66834a236bc26e354e4ec383ddafb3fe
OCSP - Url:http://ocsp.comodoca.com
OCSP - must staple:no
Certificate Transparency:yes


2.
CN="cPanel, Inc. Certification Authority", O="cPanel, Inc.", L=Houston, S=TX, C=US
18.05.2015
18.05.2025
expires in 2065 days


2.
CN="cPanel, Inc. Certification Authority", O="cPanel, Inc.", L=Houston, S=TX, C=US
18.05.2015

18.05.2025
expires in 2065 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:00F01D4BEE7B7CA37B3C0566AC05972458
Thumbprint:764D2FA59ED123F9C95570C403C92FEF338EA745
SHA256 / Certificate:ghzFXOfsXHT+u0L2JOtqNsR4IVox7Wfjz3I6Z+jHXro=
SHA256 hex / Cert (DANE * 0 1):821cc55ce7ec5c74febb42f624eb6a36c478215a31ed67e3cf723a67e8c75eba
SHA256 hex / PublicKey (DANE * 1 1):84e175ba988efb17af9c3110d77837698dccdd4a9ae3844de6b565c2f536582f
OCSP - Url:http://ocsp.comodoca.com
OCSP - must staple:no
Certificate Transparency:no


3.
CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
30.05.2000
30.05.2020
expires in 251 days


3.
CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
30.05.2000

30.05.2020
expires in 251 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:2766EE56EB49F38EABD770A2FC84DE22
Thumbprint:F5AD0BCC1AD56CD150725B1C866C30AD92EF21B0
SHA256 / Certificate:TzLV3AD3FSUKvMSGUR439QGomd6zv36orbvTrvHEEto=
SHA256 hex / Cert (DANE * 0 1):4f32d5dc00f715250abcc486511e37f501a899deb3bf7ea8adbbd3aef1c412da
SHA256 hex / PublicKey (DANE * 1 1):82b5f84daf47a59c7ab521e4982aefa40a53406a3aec26039efa6b2e0e7244c1
OCSP - Url:http://ocsp.usertrust.com
OCSP - must staple:no
Certificate Transparency:no


4.
CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
30.05.2000
30.05.2020
expires in 251 days


4.
CN=AddTrust External CA Root, OU=AddTrust External TTP Network, O=AddTrust AB, C=SE
30.05.2000

30.05.2020
expires in 251 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:01
Thumbprint:02FAF3E291435468607857694DF5E45B68851868
SHA256 / Certificate:aH+kUTgieP/wyLEfjUPVdmccbrK86rQT+4PZZdBtL/I=
SHA256 hex / Cert (DANE * 0 1):687fa451382278fff0c8b11f8d43d576671c6eb2bceab413fb83d965d06d2ff2
SHA256 hex / PublicKey (DANE * 1 1):942a6916a6e4ae527711c5450247a2a74fb8e156a8254ca66e739a11493bb445
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no



9. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates

No CertSpotter - CT-Log entries found


2. Source crt.sh - old and new certificates, sometimes very slow.

No CRT - CT-Log entries found


10. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://[2607:5300:0120:025a:0000:0000:0000:0000]/
2607:5300:120:25a::
meta
other
2

0






http://[2607:5300:0120:025a:0000:0000:0000:0000]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2607:5300:120:25a::
a

2

0







img

2

2
2
0





meta
other
5

0







style

1

0






Details (GZip part is BETA, may be wrong / incomplete)

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://[2607:5300:0120:025a:0000:0000:0000:0000]/
2607:5300:120:25a::
meta
Cache-control
no-cache


1
ok



meta
refresh
0;URL=/cgi-sys/defaultwebpage.cgi


1
ok


http://[2607:5300:0120:025a:0000:0000:0000:0000]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2607:5300:120:25a::
a

http://cpanel.com/?utm_source=cpanelwhm&utm_medium=cplogo&utm_content=logolink&utm_campaign=404referral


1
ok



a

mailto:biz688@gmail.com?subject=Error message [404] (none) for [2607:5300:0120:025A:0000:0000:0000:0000]/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de port 80 on Monday, 09-Sep-2019 09:33:02 EDT


1
ok



img
src
/img-sys/powered_by_cpanel.svg
-1
Interner Fehler: The specified value is not a valid Host header string.
1
Interner Fehler: The specified value is not a valid Host header string.



img
src
/img-sys/server_misconfigured.png
-1
Interner Fehler: The specified value is not a valid Host header string.
1
Interner Fehler: The specified value is not a valid Host header string.



meta
Cache-control
no-cache


1
ok



meta
Content-type
text/html; charset=utf-8


1
ok



meta
Expires
0


1
ok



meta
Pragma
no-cache


1
ok



meta
viewport
width=device-width, initial-scale=1.0


1
ok



style

data:image/png;base64,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


1
ok



11. CAA - Entries

No CAA entries found


12. TXT - Entries

No TXT entries found


13. Portchecks (BETA)

No Port checks



Permalink: https://check-your-website.server-daten.de/?i=355e3182-bbe1-4109-8a71-889351c099aa


Last Result: https://check-your-website.server-daten.de/?q=%5b2607%3a5300%3a120%3a25a%3a%3a%5d - 2019-09-09 15:32:54


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=%5b2607%3a5300%3a120%3a25a%3a%3a%5d" target="_blank">Check this Site: [2607:5300:120:25a::]</a>