Shortcuts: 1. Basic DNS | 2. Url-Checks | 3. Comments | 4. Connections | 5. Certificates | 6. CT-Logs | 7. Html-Content | 8. CAA | 9. TXT |


N

No trusted Certificate

Checked:
14.03.2019 20:46:30


Older results

No older results found

1. Basic DNS and Nameserver Checks

HostTIP-Addressis auth.∑ Queries∑ Timeout
85.215.2.228
A
85.215.2.228
yes




No DNSSEC - Informations found



No Nameserver entries found



No SOA entries found

2. Url-Checks


show header:
Domainname Http-StatusredirectSec.G
• http://85.215.2.228/
85.215.2.228
301
https://85.215.2.228/
0.020
A
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html
Location: https://85.215.2.228/
Set-Cookie: 85.215.2.228=d4e4cc0b-fece-4bad-a339-22cb785d8de9; Path=/; Domain=85.215.2.228; HttpOnly
Date: Thu, 14 Mar 2019 19:46:31 GMT
Connection: close

• https://85.215.2.228/
85.215.2.228
404

16.107
N
Not Found
Certificate error: RemoteCertificateNameMismatch
Content-Length: 166
Content-Type: text/html; charset=utf-8
Set-Cookie: 85.215.2.228=4388b02e-7321-419b-85f4-ee3f0450e597; Path=/; Domain=85.215.2.228; HttpOnly; Secure
Strict-Transport-Security: max-age=63072000; includeSubDomains
Public-Key-Pins: max-age=2592000; pin-sha256="Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys="; pin-sha256="C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M="; includeSubDomains
P3P: CP="NOI CUR OUR STA"
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Referrer-Policy: no-referrer-when-downgrade
Expect-CT: enforce, max-age=2592000, report-uri="/-expect-ct.html"
Feature-Policy: camera 'self'
Content-Security-Policy: default-src 'none'; style-src 'self' 'unsafe-inline'; img-src 'self'; font-src 'self'; script-src 'self'; connect-src 'self'; child-src 'self'; report-uri /-cspr.html
Date: Thu, 14 Mar 2019 19:46:31 GMT
Connection: close

• http://85.215.2.228/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
85.215.2.228
404

0.017
A
Not Found
Visible Content: No such page
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/8.5
Date: Thu, 14 Mar 2019 19:46:48 GMT
Connection: close
Content-Length: 38

3. Comments

Aname "85.215.2.228" is ipv4 address, public suffix is not defined
Agood: All ip addresses are public addresses
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://85.215.2.228/ 85.215.2.228
301
https://85.215.2.228/
correct redirect http - https with the same domain name
CError - no version with Http-Status 200
Hfatal error: No https - result with http-status 200, no encryption
Mhttps://85.215.2.228/ 85.215.2.228
404

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://85.215.2.228/ 85.215.2.228
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
https://85.215.2.228/ 85.215.2.228
404
16.107 seconds
Warning: 404 needs more then one second
ADuration: 18660 milliseconds, 18.660 seconds


4. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
85.215.2.228
85.215.2.228
443
name does not match
Tls12
ECDH Ephermal
384
Aes256
256
Sha384
error checking OCSP stapling
ok


5. Certificates

1.
1.
CN=*.server-daten.de
07.01.2019
07.04.2019
48 days expired
*.server-daten.de, server-daten.de - 2 entries

KeyalgorithmEC Public Key (384 bit, secp384r1)
Signatur:SHA256 With RSA-Encryption
Serial Number:047C1126D8D8869222AC7A4F524D4F5D4CA0
Thumbprint:C81C41B890550909A0BAE790DEBACDA35678B7F0
SHA256 / Certificate:D3445Q1x/ZDxk+z/n5LfNnGzMer1oT7KijmBzXlT8Rc=
SHA256 hex / Cert (DANE * 0 1):0f7e38e50d71fd90f193ecff9f92df3671b331eaf5a13eca8a3981cd7953f117
SHA256 hex / PublicKey (DANE * 1 1):c5d211f307840e971013140d2efe8fca0168481505360650c5a33c7c85a9ca9e
OCSP - Url:http://ocsp.int-x3.letsencrypt.org
OCSP - must staple:yes
Certificate Transparency:yes


2.
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
17.03.2016
17.03.2021
expires in 662 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:0A0141420000015385736A0B85ECA708
Thumbprint:E6A3B45B062D509B3382282D196EFE97D5956CCB
SHA256 / Certificate:JYR9Zo608E/dQLErawdAxWfafQJDCOtsLJb+QdneIY0=
SHA256 hex / Cert (DANE * 0 1):25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
SHA256 hex / PublicKey (DANE * 1 1):60b87575447dcba2a36b7d11ac09fb24a9db406fee12d2cc90180517616e8a18
OCSP - Url:http://isrg.trustid.ocsp.identrust.com
OCSP - must staple:no
Certificate Transparency:no


3.
CN=DST Root CA X3, O=Digital Signature Trust Co.
30.09.2000
30.09.2021
expires in 859 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:44AFB080D6A327BA893039862EF8406B
Thumbprint:DAC9024F54D8F6DF94935FB1732638CA6AD77C13
SHA256 / Certificate:BocmAzGnJAPZCfEF5pvPDTLhvSST/8bZIG0RvNZ3Bzk=
SHA256 hex / Cert (DANE * 0 1):0687260331a72403d909f105e69bcf0d32e1bd2493ffc6d9206d11bcd6770739
SHA256 hex / PublicKey (DANE * 1 1):563b3caf8cfef34c2335caf560a7a95906e8488462eb75ac59784830df9e5b2b
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no



6. Last Certificates - Certificate Transparency Log Check (BETA)

1. Source CertSpotter - active certificates

No CertSpotter - Certificate-Transparency-Log informations found. The feature is new (startet 2019-05-07), so recheck this domain.


2. Source crt.sh - old and new certificates, sometimes very slow.

No Certificate-Transparency-Log informations found. The feature is new (startet 2019-03-21), so recheck this domain.


7. Html-Content - Entries (BETA - mixed content and other checks)

No Html-Content entries found. Only checked if https + status 200/401/403/404


8. CAA - Entries

No CAA entries found


9. TXT - Entries

No TXT entries found



Permalink: https://check-your-website.server-daten.de/?i=7d666333-68b0-46ed-a913-08ed01bb1210


Last Result: https://check-your-website.server-daten.de/?q=85.215.2.228 - 2019-03-14 20:46:30