Check DNS, Urls + Redirects, Certificates and Content of your Website




J

General Configuration problem

Checked:
14.01.2020 12:16:31


Older results

No older results found


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
gloverandking.com
A

yes
1
0

AAAA

yes


www.gloverandking.com
A
77.72.0.110
Torquay/England/United Kingdom (GB) - Krystal Hosting Ltd
Hostname: neon.cloudhosting.co.uk
yes
1
0

AAAA

yes



2. DNSSEC

Zone (*)DNSSEC - Informations (some minor bugs wildcard + nsec/nsec3)

Zone: (root)
(root)
1 DS RR published



Status: Valid because published



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 33853, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.02.2020, 00:00:00 +, Signature-Inception: 11.01.2020, 00:00:00 +, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: com
com
1 DS RR in the parent zone found



1 RRSIG RR to validate DS RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 27.01.2020, 05:00:00 +, Signature-Inception: 14.01.2020, 04:00:00 +, KeyTag 33853, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 33853 used to validate the DS RRSet in the parent zone



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 12163, Flags 256



Public Key with Algorithm 8, KeyTag 30909, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 56311, Flags 256



1 RRSIG RR to validate DNSKEY RR found



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 21.01.2020, 19:24:21 +, Signature-Inception: 06.01.2020, 19:19:21 +, KeyTag 30909, Signer-Name: com



RRSIG-Owner com., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 21.01.2020, 19:24:21 +, Signature-Inception: 06.01.2020, 19:19:21 +, KeyTag 30909, Signer-Name: com



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 30909 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 30909, DigestType 2 and Digest "4tPJFvbe6scylOgmj7WIUESoM/xUWViPSpGEz8QaV2Y=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: gloverandking.com
gloverandking.com
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "u1ru6i4trkb4j0k1p7u20q480t569jef" between the hashed NSEC3-owner "u1ru306qfmforr4c0g9kn037jhmfg58s" and the hashed NextOwner "u1ruq65498b2515pfgnr834cnihchumn". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner u1ru306qfmforr4c0g9kn037jhmfg58s.com., Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 18.01.2020, 05:27:08 +, Signature-Inception: 11.01.2020, 04:17:08 +, KeyTag 12163, Signer-Name: com



0 DNSKEY RR found




Zone: www.gloverandking.com
www.gloverandking.com
0 DS RR in the parent zone found


3. Name Servers

DomainNameserverNS-IP
www.gloverandking.com
  ns1.bdm.microsoftonline.com

gloverandking.com
  ns1.bdm.microsoftonline.com
40.90.4.208
Ashburn/Virginia/United States (US) - Microsoft Corporation


 
2603:1061::d0
Toronto/Ontario/Canada (CA) - Microsoft Corporation


  ns2.bdm.microsoftonline.com
64.4.48.208
Ashburn/Virginia/United States (US) - Microsoft Corporation


 
2620:1ec:8ec::d0
Toronto/Ontario/Canada (CA) - Microsoft Corporation


  ns3.bdm.microsoftonline.com
13.107.24.208
Ashburn/Virginia/United States (US) - Microsoft Corporation


 
2a01:111:4000::d0
Dublin/Leinster/Ireland (IE) - Microsoft Corporation


  ns4.bdm.microsoftonline.com
13.107.160.208
Ashburn/Virginia/United States (US) - Microsoft Corporation


 
2620:1ec:bda::d0
Toronto/Ontario/Canada (CA) - Microsoft Corporation

com
  a.gtld-servers.net


  b.gtld-servers.net


  c.gtld-servers.net


  d.gtld-servers.net


  e.gtld-servers.net


  f.gtld-servers.net


  g.gtld-servers.net


  h.gtld-servers.net


  i.gtld-servers.net


  j.gtld-servers.net


  k.gtld-servers.net


  l.gtld-servers.net


  m.gtld-servers.net


4. SOA-Entries


Domain:com
Zone-Name:
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1579000558
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:2


Domain:com
Zone-Name:
Primary:a.gtld-servers.net
Mail:nstld.verisign-grs.com
Serial:1579000573
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:11


Domain:gloverandking.com
Zone-Name:
Primary:ns1.bdm.microsoftonline.com
Mail:azuredns-hostmaster.microsoft.com
Serial:1
Refresh:3600
Retry:300
Expire:2419200
TTL:300
num Entries:8


Domain:www.gloverandking.com
Zone-Name:
Primary:ns1.bdm.microsoftonline.com
Mail:azuredns-hostmaster.microsoft.com
Serial:1
Refresh:3600
Retry:300
Expire:2419200
TTL:300
num Entries:1


5. Screenshots

Startaddress: https://www.gloverandking.com, address used: https://www.gloverandking.com/, Screenshot created 2020-01-14 12:18:34 +00:0 url is insecure, certificate invalid

Mobil (412px x 732px)

351 milliseconds

Screenshot mobile - https://www.gloverandking.com/
Mobil + Landscape (732px x 412px)

365 milliseconds

Screenshot mobile landscape - https://www.gloverandking.com/
Screen (1280px x 1680px)

547 milliseconds

Screenshot Desktop - https://www.gloverandking.com/

Mobile- and other Chrome-Checks

widthheight
visual Viewport412732
content Size412732

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

Chrome-Connection: secure. secure connection settings. The connection to this site is encrypted and authenticated using TLS 1.3, X25519, and AES_128_GCM.

Chrome-Resources : secure. all served securely. All resources on this page are served securely.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://www.gloverandking.com/
77.72.0.110
301
https://www.gloverandking.com/
2.766
A
Connection: close
Content-Type: text/html; charset=UTF-8
X-Redirect-By: WordPress
Location: https://www.gloverandking.com/
Content-Length: 0
Date: Tue, 14 Jan 2020 11:17:08 GMT
Server: LiteSpeed
Vary: User-Agent

• https://www.gloverandking.com/
77.72.0.110
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
3.750
J
Certificate error: RemoteCertificateNameMismatch
small visible content (num chars: 0)
Connection: close
Content-Type: text/html
Last-Modified: Tue, 07 Aug 2018 09:12:42 GMT
Accept-Ranges: bytes
Content-Length: 163
Date: Tue, 14 Jan 2020 11:17:08 GMT
Server: LiteSpeed
Vary: User-Agent
Alt-Svc: quic=":443"; ma=2592000; v="39,43,46", h3-Q039=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-23=":443"; ma=2592000, h3-24=":443"; ma=2592000

• http://www.gloverandking.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
77.72.0.110
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0
404

Html is minified: 101.39 %
0.077
A
Not Found
Visible Content: 404 Not Found The resource requested could not be found on this server! Proudly powered by LiteSpeed Web Server Please be advised that LiteSpeed Technologies Inc. is not a web hosting company and, as such, has no control over content found on this site.
Connection: close
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Content-Type: text/html
Content-Length: 1236
Date: Tue, 14 Jan 2020 11:17:12 GMT
Server: LiteSpeed
Vary: User-Agent

7. Comments


1. General Results, most used to calculate the result

Aname "gloverandking.com" is domain, public suffix is "com", top-level-domain-type is "generic", tld-manager is "VeriSign Global Registry Services"
Agood: All ip addresses are public addresses
Agood: No asked Authoritative Name Server had a timeout
Agood: destination is https
Agood - only one version with Http-Status 200
Agood: one preferred version: www is preferred
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: Some urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset):0 complete Content-Type - header (2 urls)
https://www.gloverandking.com/ 77.72.0.110


Url with incomplete Content-Type - header - missing charset
http://www.gloverandking.com/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 77.72.0.110


Url with incomplete Content-Type - header - missing charset
Ahttp://www.gloverandking.com/ 77.72.0.110
301
https://www.gloverandking.com/
correct redirect http - https with the same domain name
Bhttps://www.gloverandking.com/ 77.72.0.110
200

Missing HSTS-Header
Jhttps://www.gloverandking.com/ 77.72.0.110
200

Fatal: Control Panel error message. Ask your hoster. There is a cPanel-Redirect to the SORRY-page /cgi-sys/defaultwebpage.cgi with additional instructions.
Nhttps://www.gloverandking.com/ 77.72.0.110
200

Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.gloverandking.com:993


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.gloverandking.com:995


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.gloverandking.com:2083


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.gloverandking.com:2087


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
Nwww.gloverandking.com:2096


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N77.72.0.110:993


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N77.72.0.110:995


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N77.72.0.110:2083


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N77.72.0.110:2087


Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N77.72.0.110:2096


Error - Certificate isn't trusted, RemoteCertificateNameMismatch

2. DNS- and NameServer - Checks

AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns1.bdm.microsoftonline.com,ns2.bdm.microsoftonline.com,ns3.bdm.microsoftonline.com,ns4.bdm.microsoftonline.com
AGood: Nameserver supports TCP connections: 8 good Nameserver
AGood: Nameserver supports Echo Capitalization: 8 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 8 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 8 good Nameserver
AGood: All SOA have the same Serial Number
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.

3. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
https://www.gloverandking.com/ 77.72.0.110
200

Warning: https result with status 200 and size greater then 1024 Bytes without GZip found. Add GZip support so the html content is compressed.
AGood: No https + http status 200 with inline CSS / JavaScript found
AGood: Every https result with status 200 has a minified Html-Content with a quota lower then 110 %.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
ADuration: 127970 milliseconds, 127.970 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
www.gloverandking.com
77.72.0.110
443
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
supported
ok
www.gloverandking.com
77.72.0.110
443
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
supported
ok
http/2 via ALPN supported 
Tls.1.2
Tls.1.1
Tls.1.0
http/2 via ALPN supported
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


www.gloverandking.com
www.gloverandking.com
993
name does not match
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

www.gloverandking.com
www.gloverandking.com
993
name does not match
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
 
Tls.1.2
Tls.1.1
Tls.1.0

Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


www.gloverandking.com
www.gloverandking.com
995
name does not match
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

www.gloverandking.com
www.gloverandking.com
995
name does not match
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
 
Tls.1.2
Tls.1.1
Tls.1.0

Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


www.gloverandking.com
www.gloverandking.com
2083
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

www.gloverandking.com
www.gloverandking.com
2083
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


www.gloverandking.com
www.gloverandking.com
2087
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

www.gloverandking.com
www.gloverandking.com
2087
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


www.gloverandking.com
www.gloverandking.com
2096
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

www.gloverandking.com
www.gloverandking.com
2096
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


77.72.0.110
77.72.0.110
993
name does not match
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

77.72.0.110
77.72.0.110
993
name does not match
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
 
Tls.1.2
Tls.1.1
Tls.1.0

Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


77.72.0.110
77.72.0.110
995
name does not match
Tls12
ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok

77.72.0.110
77.72.0.110
995
name does not match
Tls12

ECDH Ephermal
256
Aes256
256
Sha384
error checking OCSP stapling
ok
 
Tls.1.2
Tls.1.1
Tls.1.0

Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


77.72.0.110
77.72.0.110
2083
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

77.72.0.110
77.72.0.110
2083
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


77.72.0.110
77.72.0.110
2087
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

77.72.0.110
77.72.0.110
2087
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


77.72.0.110
77.72.0.110
2096
name does not match
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

77.72.0.110
77.72.0.110
2096
name does not match
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
no http/2 via ALPN 
Tls.1.2
Tls.1.1
Tls.1.0
no http/2 via ALPN
Tls.1.2
Tls.1.1
Tls.1.0
Chain - too much certificates, don't send root certificates
1CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard

2CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester

3CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, C=GB, ST=Greater Manchester


9. Certificates

1.
1.
CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard, OU=Domain Control Validated
03.11.2018
03.11.2020
expires in 120 days
*.cloudhosting.co.uk, cloudhosting.co.uk - 2 entries
1.
1.
CN=*.cloudhosting.co.uk, OU=EssentialSSL Wildcard, OU=Domain Control Validated
03.11.2018

03.11.2020
expires in 120 days
*.cloudhosting.co.uk, cloudhosting.co.uk - 2 entries

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:2BC9930FE197AF147F57CA7F7240FDD5
Thumbprint:B449E2508A8D9586E69B770B0EF8250E493E0B0F
SHA256 / Certificate:o/P6k1YTe2QzHUuMxwtxGCZHqK5A4Jon706Art3NCPE=
SHA256 hex / Cert (DANE * 0 1):a3f3fa9356137b64331d4b8cc70b71182647a8ae40e09a27ef4e80aeddcd08f1
SHA256 hex / PublicKey (DANE * 1 1):269de5e94528a823c7d65b81da8558e46a3a91f118538c3ad7a67c51a09fa40f
SHA256 hex / Subject Public Key Information (SPKI):c1536c6b1a6cb26903a47ca4b55f69c0872e492d1324ae8aab405c70731dba6a
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.comodoca.com
OCSP - must staple:no
Certificate Transparency:yes


2.
CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
12.02.2014
12.02.2029
expires in 3143 days


2.
CN=COMODO RSA Domain Validation Secure Server CA, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
12.02.2014

12.02.2029
expires in 3143 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:2B2E6EEAD975366C148A6EDBA37C8C07
Thumbprint:339CDD57CFD5B141169B615FF31428782D1DA639
SHA256 / Certificate:AqtX5OZ6DLSN0v80gw6KxA9EdvsIymvj9c2Eb2RoQPA=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):9253b6de74f67a11435c27f1dde1d30d1112333ddab23d66b8efb86887638ae6
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://ocsp.comodoca.com
OCSP - must staple:no
Certificate Transparency:no


3.
CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
19.01.2010
19.01.2038
expires in 6406 days


3.
CN=COMODO RSA Certification Authority, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB
19.01.2010

19.01.2038
expires in 6406 days


KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA384 With RSA Encryption
Serial Number:4CAAF9CADB636FE01FF74ED85B03869D
Thumbprint:AFE5D244A8D1194230FF479FE2F897BBCD7A8CB4
SHA256 / Certificate:UvDhxOWOxikpG2AxfwdGcbhdfqgNWwcnNGNTSzK0AjQ=
SHA256 hex / Cert (DANE * 0 1):52f0e1c4e58ec629291b60317f074671b85d7ea80d5b07273463534b32b40234
SHA256 hex / PublicKey (DANE * 1 1):82b5f84daf47a59c7ab521e4982aefa40a53406a3aec26039efa6b2e0e7244c1
SHA256 hex / Subject Public Key Information (SPKI):f6761914d3b7f6abaa7dc85adc13aa19dd5f6a6707ebb7120029fe01e967b668
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found


2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0 /0 new
0
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
2102284038
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-11-12 08:56:53
2020-02-10 08:56:53
cpanel.gloverandking.com, gloverandking.com, mail.gloverandking.com, webdisk.gloverandking.com, webmail.gloverandking.com, www.gloverandking.com
6 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://www.gloverandking.com/
77.72.0.110
meta
other
2

0


0
0
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://www.gloverandking.com/
77.72.0.110
meta
Cache-control
no-cache


1
ok








meta
refresh
0;URL=/cgi-sys/defaultwebpage.cgi


1
ok








12. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

No NameServer - IP address informations found. The feature is new (2020-05-07), so recheck this domain.


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.gloverandking.com
0

no CAA entry found
1
0
gloverandking.com
0

no CAA entry found
1
0
com
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
gloverandking.com
mscid=DV6Oqf6TwT/5fGHBoZImfShVqvGWPWjNDEX2Ba6k9yp0dgtovYRrM2oa2E3dMzKHb/WWw02Jfcu+ySqfMTy+zw==
ok
1
0
gloverandking.com
v=spf1 include:spf.protection.outlook.com -all
ok
1
0
www.gloverandking.com

ok
1
0
_acme-challenge.gloverandking.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.gloverandking.com

Name Error - The domain name does not exist
1
0
_acme-challenge.gloverandking.com.gloverandking.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.gloverandking.com.gloverandking.com

Name Error - The domain name does not exist
1
0
_acme-challenge.www.gloverandking.com.www.gloverandking.com

Name Error - The domain name does not exist
1
0


15. Portchecks

Domain or IPPortDescriptionResultAnswer
www.gloverandking.com
21
FTP
open
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 7 of 50 allowed. 220-Local time is now 11:17. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity.

www.gloverandking.com
21
FTP
open
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 7 of 50 allowed. 220-Local time is now 11:17. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity.

www.gloverandking.com
22
SSH



www.gloverandking.com
22
SSH



www.gloverandking.com
25
SMTP
open


www.gloverandking.com
25
SMTP
open


www.gloverandking.com
53
DNS



www.gloverandking.com
53
DNS



www.gloverandking.com
110
POP3
open
+OK Dovecot ready.

www.gloverandking.com
110
POP3
open
+OK Dovecot ready.

www.gloverandking.com
143
IMAP
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS LOGINDISABLED] Dovecot ready.

www.gloverandking.com
143
IMAP
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS LOGINDISABLED] Dovecot ready.

www.gloverandking.com
465
SMTP (encrypted)
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:34 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

www.gloverandking.com
465
SMTP (encrypted)
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:34 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

www.gloverandking.com
587
SMTP (encrypted, submission)
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:27 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

www.gloverandking.com
587
SMTP (encrypted, submission)
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:27 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

www.gloverandking.com
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
Mail certificate is invalid
www.gloverandking.com
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
Mail certificate is invalid
www.gloverandking.com
995
POP3 (encrypted)
open
+OK Dovecot ready.
Mail certificate is invalid
www.gloverandking.com
995
POP3 (encrypted)
open
+OK Dovecot ready.
Mail certificate is invalid
www.gloverandking.com
1433
MS SQL



www.gloverandking.com
1433
MS SQL



www.gloverandking.com
2082
cPanel (http)
open
http://www.gloverandking.com:2082/
Http-Status: 200

www.gloverandking.com
2082
cPanel (http)
open
http://www.gloverandking.com:2082/
Http-Status: 200

www.gloverandking.com
2083
cPanel (https)
open
https://www.gloverandking.com:2083/
Http-Status: 200
Certificate is invalid
www.gloverandking.com
2083
cPanel (https)
open
https://www.gloverandking.com:2083/
Http-Status: 200
Certificate is invalid
www.gloverandking.com
2086
WHM (http)
open
http://www.gloverandking.com:2086/
Http-Status: 200

www.gloverandking.com
2086
WHM (http)
open
http://www.gloverandking.com:2086/
Http-Status: 200

www.gloverandking.com
2087
WHM (https)
open
https://www.gloverandking.com:2087/
Http-Status: 200
Certificate is invalid
www.gloverandking.com
2087
WHM (https)
open
https://www.gloverandking.com:2087/
Http-Status: 200
Certificate is invalid
www.gloverandking.com
2089
cPanel Licensing



www.gloverandking.com
2089
cPanel Licensing



www.gloverandking.com
2095
cPanel Webmail (http)
open
http://www.gloverandking.com:2095/
Http-Status: 200

www.gloverandking.com
2095
cPanel Webmail (http)
open
http://www.gloverandking.com:2095/
Http-Status: 200

www.gloverandking.com
2096
cPanel Webmail (https)
open
https://www.gloverandking.com:2096/
Http-Status: 200
Certificate is invalid
www.gloverandking.com
2096
cPanel Webmail (https)
open
https://www.gloverandking.com:2096/
Http-Status: 200
Certificate is invalid
www.gloverandking.com
2222
DirectAdmin (http)



www.gloverandking.com
2222
DirectAdmin (http)



www.gloverandking.com
2222
DirectAdmin (https)



www.gloverandking.com
2222
DirectAdmin (https)



www.gloverandking.com
3306
mySql
open


www.gloverandking.com
3306
mySql
open


www.gloverandking.com
5224
Plesk Licensing



www.gloverandking.com
5224
Plesk Licensing



www.gloverandking.com
5432
PostgreSQL



www.gloverandking.com
5432
PostgreSQL



www.gloverandking.com
8080
Ookla Speedtest (http)



www.gloverandking.com
8080
Ookla Speedtest (http)



www.gloverandking.com
8080
Ookla Speedtest (https)



www.gloverandking.com
8080
Ookla Speedtest (https)



www.gloverandking.com
8083
VestaCP http



www.gloverandking.com
8083
VestaCP http



www.gloverandking.com
8083
VestaCP https



www.gloverandking.com
8083
VestaCP https



www.gloverandking.com
8443
Plesk Administration (https)



www.gloverandking.com
8443
Plesk Administration (https)



www.gloverandking.com
8447
Plesk Installer + Updates



www.gloverandking.com
8447
Plesk Installer + Updates



www.gloverandking.com
8880
Plesk Administration (http)



www.gloverandking.com
8880
Plesk Administration (http)



www.gloverandking.com
10000
Webmin (http)



www.gloverandking.com
10000
Webmin (http)



www.gloverandking.com
10000
Webmin (https)



www.gloverandking.com
10000
Webmin (https)



77.72.0.110
21
FTP
open
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 6 of 50 allowed. 220-Local time is now 11:17. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity.

77.72.0.110
21
FTP
open
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 6 of 50 allowed. 220-Local time is now 11:17. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity.

77.72.0.110
22
SSH
open
Your connection to this server has been blocked in this server's firewall. You need to contact the server owner or hosting provider for further information. Your blocked IP address is: 85.215.2.227 This server's hostname is: neon.cloudhosting.co.uk

77.72.0.110
22
SSH
open
Your connection to this server has been blocked in this server's firewall. You need to contact the server owner or hosting provider for further information. Your blocked IP address is: 85.215.2.227 This server's hostname is: neon.cloudhosting.co.uk

77.72.0.110
25
SMTP
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:47 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

77.72.0.110
25
SMTP
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:47 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

77.72.0.110
53
DNS



77.72.0.110
53
DNS



77.72.0.110
110
POP3
open
+OK Dovecot ready.

77.72.0.110
110
POP3
open
+OK Dovecot ready.

77.72.0.110
143
IMAP
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS LOGINDISABLED] Dovecot ready.

77.72.0.110
143
IMAP
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS LOGINDISABLED] Dovecot ready.

77.72.0.110
465
SMTP (encrypted)
open


77.72.0.110
465
SMTP (encrypted)
open


77.72.0.110
587
SMTP (encrypted, submission)
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:27 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

77.72.0.110
587
SMTP (encrypted, submission)
open
220-neon.cloudhosting.co.uk ESMTP Exim Tue, 14 Jan 2020 11:17:27 +0000 220- We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail.

77.72.0.110
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
Mail certificate is invalid
77.72.0.110
993
IMAP (encrypted)
open
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
Mail certificate is invalid
77.72.0.110
995
POP3 (encrypted)
open
+OK Dovecot ready.
Mail certificate is invalid
77.72.0.110
995
POP3 (encrypted)
open
+OK Dovecot ready.
Mail certificate is invalid
77.72.0.110
1433
MS SQL



77.72.0.110
1433
MS SQL



77.72.0.110
2082
cPanel (http)
open
http://77.72.0.110:2082/
Http-Status: 200

77.72.0.110
2082
cPanel (http)
open
http://77.72.0.110:2082/
Http-Status: 200

77.72.0.110
2083
cPanel (https)
open
https://77.72.0.110:2083/
Http-Status: 200
Certificate is invalid
77.72.0.110
2083
cPanel (https)
open
https://77.72.0.110:2083/
Http-Status: 200
Certificate is invalid
77.72.0.110
2086
WHM (http)
open
http://77.72.0.110:2086/
Http-Status: 200

77.72.0.110
2086
WHM (http)
open
http://77.72.0.110:2086/
Http-Status: 200

77.72.0.110
2087
WHM (https)
open
https://77.72.0.110:2087/
Http-Status: 200
Certificate is invalid
77.72.0.110
2087
WHM (https)
open
https://77.72.0.110:2087/
Http-Status: 200
Certificate is invalid
77.72.0.110
2089
cPanel Licensing



77.72.0.110
2089
cPanel Licensing



77.72.0.110
2095
cPanel Webmail (http)
open
http://77.72.0.110:2095/
Http-Status: 200

77.72.0.110
2095
cPanel Webmail (http)
open
http://77.72.0.110:2095/
Http-Status: 200

77.72.0.110
2096
cPanel Webmail (https)
open
https://77.72.0.110:2096/
Http-Status: 200
Certificate is invalid
77.72.0.110
2096
cPanel Webmail (https)
open
https://77.72.0.110:2096/
Http-Status: 200
Certificate is invalid
77.72.0.110
2222
DirectAdmin (http)



77.72.0.110
2222
DirectAdmin (http)



77.72.0.110
2222
DirectAdmin (https)



77.72.0.110
2222
DirectAdmin (https)



77.72.0.110
3306
mySql
open


77.72.0.110
3306
mySql
open


77.72.0.110
5224
Plesk Licensing



77.72.0.110
5224
Plesk Licensing



77.72.0.110
5432
PostgreSQL



77.72.0.110
5432
PostgreSQL



77.72.0.110
8080
Ookla Speedtest (http)



77.72.0.110
8080
Ookla Speedtest (http)



77.72.0.110
8080
Ookla Speedtest (https)



77.72.0.110
8080
Ookla Speedtest (https)



77.72.0.110
8083
VestaCP http



77.72.0.110
8083
VestaCP http



77.72.0.110
8083
VestaCP https



77.72.0.110
8083
VestaCP https



77.72.0.110
8443
Plesk Administration (https)



77.72.0.110
8443
Plesk Administration (https)



77.72.0.110
8447
Plesk Installer + Updates



77.72.0.110
8447
Plesk Installer + Updates



77.72.0.110
8880
Plesk Administration (http)



77.72.0.110
8880
Plesk Administration (http)



77.72.0.110
10000
Webmin (http)



77.72.0.110
10000
Webmin (http)



77.72.0.110
10000
Webmin (https)



77.72.0.110
10000
Webmin (https)





Permalink: https://check-your-website.server-daten.de/?i=1a0ffd73-9e41-44ad-9328-aa34eb9574a6


Last Result: https://check-your-website.server-daten.de/?q=gloverandking.com - 2020-01-14 12:16:31


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=gloverandking.com" target="_blank">Check this Site: gloverandking.com</a>