Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

Misconfiguration - http-status 400 - 499

Checked:
03.10.2025 23:38:25

Older results

No older results found

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
markthibodeaux.org	A		yes	1	0
	AAAA		yes
www.markthibodeaux.org	A	104.21.75.253 Toronto/Ontario/Canada (CA) - Cloudflare, Inc. No Hostname found	yes	1	0
	A	172.67.184.142 Toronto/Ontario/Canada (CA) - Cloudflare, Inc. No Hostname found	yes	1	0
	AAAA	2606:4700:3030::6815:4bfd Montreal/Quebec/Canada (CA) - Cloudflare, Inc.	yes
	AAAA	2606:4700:3037::ac43:b88e Montreal/Quebec/Canada (CA) - Cloudflare, Inc.	yes
*.markthibodeaux.org	A	104.21.75.253	yes
	A	172.67.184.142	yes
	AAAA	2606:4700:3030::6815:4bfd	yes
	AAAA	2606:4700:3037::ac43:b88e	yes
	CNAME		yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	4 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 46441, Flags 256


	Public Key with Algorithm 8, KeyTag 61809, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 22.10.2025, 00:00:00 +, Signature-Inception: 01.10.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: org
org	1 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 26974, DigestType 2 and Digest T+3ilMU/Q4oVjEHTlInNeKhr6w2KCur/FHRcDRbh3jI=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner org., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 16.10.2025, 20:00:00 +, Signature-Inception: 03.10.2025, 19:00:00 +, KeyTag 61809, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 61809 used to validate the DS RRSet in the parent zone


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 14268, Flags 256


	Public Key with Algorithm 8, KeyTag 26974, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 57769, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner org., Algorithm: 8, 1 Labels, original TTL: 3600 sec, Signature-expiration: 22.10.2025, 15:25:00 +, Signature-Inception: 01.10.2025, 14:25:00 +, KeyTag 26974, Signer-Name: org


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 26974 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 26974, DigestType 2 and Digest "T+3ilMU/Q4oVjEHTlInNeKhr6w2KCur/FHRcDRbh3jI=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: markthibodeaux.org
markthibodeaux.org	1 DS RR in the parent zone found


	DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest edqliUL1oEcpxGO5Nu7JQtTXuhz0pg9T5pRmdCKJwHo=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner markthibodeaux.org., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 22.10.2025, 15:25:00 +, Signature-Inception: 01.10.2025, 14:25:00 +, KeyTag 57769, Signer-Name: org


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 57769 used to validate the DS RRSet in the parent zone


	2 DNSKEY RR found


	Public Key with Algorithm 13, KeyTag 2371, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 13, KeyTag 34505, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner markthibodeaux.org., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 21.11.2025, 20:49:15 +, Signature-Inception: 21.09.2025, 20:49:15 +, KeyTag 2371, Signer-Name: markthibodeaux.org


	• Status: Good - Algorithmus 13 and DNSKEY with KeyTag 2371 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest "edqliUL1oEcpxGO5Nu7JQtTXuhz0pg9T5pRmdCKJwHo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone


	RRSIG Type 16 validates the TXT - Result: google-site-verification=Tj9Yi2KAR3l6Dc_TjgtbOdaGoXT6F7KJ86d45cg3lPs Validated: RRSIG-Owner markthibodeaux.org., Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	A-Query sends a valid NSEC RR as result with the query name "markthibodeaux.org" equal the NSEC-owner "markthibodeaux.org" and the NextOwner "\000.markthibodeaux.org". So the zone confirmes the not-existence of that A RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: NS, SOA, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, DNSKEY, TLSA, 53, HIP, CDS, CDNSKEY, 61, 64, 65, URI, CAA Validated: RRSIG-Owner markthibodeaux.org., Algorithm: 13, 2 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	CNAME-Query sends a valid NSEC RR as result with the query name "markthibodeaux.org" equal the NSEC-owner "markthibodeaux.org" and the NextOwner "\000.markthibodeaux.org". So the zone confirmes the not-existence of that CNAME RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, NS, SOA, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, DNSKEY, TLSA, 53, HIP, CDS, CDNSKEY, 61, 64, 65, URI, CAA Validated: RRSIG-Owner markthibodeaux.org., Algorithm: 13, 2 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	AAAA-Query sends a valid NSEC RR as result with the query name "markthibodeaux.org" equal the NSEC-owner "markthibodeaux.org" and the NextOwner "\000.markthibodeaux.org". So the zone confirmes the not-existence of that AAAA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, NS, SOA, 13, MX, TXT, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, DNSKEY, TLSA, 53, HIP, CDS, CDNSKEY, 61, 64, 65, URI, CAA Validated: RRSIG-Owner markthibodeaux.org., Algorithm: 13, 2 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	TLSA-Query (_443._tcp.markthibodeaux.org) sends a valid NSEC RR as result with the query name "_443._tcp.markthibodeaux.org" equal the NSEC-owner "_443._tcp.markthibodeaux.org" and the NextOwner "\000._443._tcp.markthibodeaux.org". So the zone confirmes the not-existence of that TLSA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner _443._tcp.markthibodeaux.org., Algorithm: 13, 4 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	CAA-Query sends a valid NSEC RR as result with the query name "markthibodeaux.org" equal the NSEC-owner "markthibodeaux.org" and the NextOwner "\000.markthibodeaux.org". So the zone confirmes the not-existence of that CAA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, NS, SOA, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, DNSKEY, TLSA, 53, HIP, CDS, CDNSKEY, 61, 64, 65, URI Validated: RRSIG-Owner markthibodeaux.org., Algorithm: 13, 2 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.

Zone: www.markthibodeaux.org
www.markthibodeaux.org	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "www.markthibodeaux.org" and the NextOwner "\000.www.markthibodeaux.org". So the parent zone confirmes the non-existence of a DS RR. Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA


	RRSIG Type 1 validates the A - Result: 104.21.75.253 172.67.184.142 Validated: RRSIG-Owner www.markthibodeaux.org., Algorithm: 13, 3 Labels, original TTL: 300 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	RRSIG Type 28 validates the AAAA - Result: 2606:4700:3030:0000:0000:0000:6815:4BFD 2606:4700:3037:0000:0000:0000:AC43:B88E Validated: RRSIG-Owner www.markthibodeaux.org., Algorithm: 13, 3 Labels, original TTL: 300 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	CNAME-Query sends a valid NSEC RR as result with the query name "www.markthibodeaux.org" equal the NSEC-owner "www.markthibodeaux.org" and the NextOwner "\000.www.markthibodeaux.org". So the zone confirmes the not-existence of that CNAME RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner www.markthibodeaux.org., Algorithm: 13, 3 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	TXT-Query sends a valid NSEC RR as result with the query name "www.markthibodeaux.org" equal the NSEC-owner "www.markthibodeaux.org" and the NextOwner "\000.www.markthibodeaux.org". So the zone confirmes the not-existence of that TXT RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner www.markthibodeaux.org., Algorithm: 13, 3 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	TLSA-Query (_443._tcp.www.markthibodeaux.org) sends a valid NSEC RR as result with the query name "_443._tcp.www.markthibodeaux.org" equal the NSEC-owner "_443._tcp.www.markthibodeaux.org" and the NextOwner "\000._443._tcp.www.markthibodeaux.org". So the zone confirmes the not-existence of that TLSA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, 53, HIP, 61, 64, 65, URI, CAA Validated: RRSIG-Owner _443._tcp.www.markthibodeaux.org., Algorithm: 13, 5 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.


	CAA-Query sends a valid NSEC RR as result with the query name "www.markthibodeaux.org" equal the NSEC-owner "www.markthibodeaux.org" and the NextOwner "\000.www.markthibodeaux.org". So the zone confirmes the not-existence of that CAA RR, but the existence of that query name (minimal one RR with that name exists). Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, NAPTR, CERT, SSHFP, RRSIG, NSEC, TLSA, 53, HIP, 61, 64, 65, URI Validated: RRSIG-Owner www.markthibodeaux.org., Algorithm: 13, 3 Labels, original TTL: 1800 sec, Signature-expiration: 04.10.2025, 22:39:03 +, Signature-Inception: 02.10.2025, 20:39:03 +, KeyTag 34505, Signer-Name: markthibodeaux.org


	Status: Good. NoData-Proof required and found.

3. Name Servers

Domain	Nameserver	NS-IP
www.markthibodeaux.org	• nolan.ns.cloudflare.com / 67m113		•
markthibodeaux.org	• nolan.ns.cloudflare.com / 67m110	108.162.195.56 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	162.159.44.56 Los Angeles/California/United States (US) - Cloudflare, Inc.	•
	•	172.64.35.56 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2606:4700:58::a29f:2c38 Montreal/Quebec/Canada (CA) - Cloudflare, Inc.	•
	•	2803:f800:50::6ca2:c338 San José/Provincia de San José/Costa Rica (CR) - Cloudflare, Inc.	•
	•	2a06:98c1:50::ac40:2338 London/England/United Kingdom (GB) - CloudFLARENET-EU	•
	• yolanda.ns.cloudflare.com / 67m149	108.162.192.241 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	172.64.32.241 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	173.245.58.241 Toronto/Ontario/Canada (CA) - Cloudflare, Inc.	•
	•	2606:4700:50::adf5:3af1 Montreal/Quebec/Canada (CA) - Cloudflare, Inc.	•
	•	2803:f800:50::6ca2:c0f1 San José/Provincia de San José/Costa Rica (CR) - Cloudflare, Inc.	•
	•	2a06:98c1:50::ac40:20f1 London/England/United Kingdom (GB) - CloudFLARENET-EU	•
org	• a0.org.afilias-nst.info / app7.nrt1.hosts.meta.redstone.afilias-nst.info-1615580861		•
	• a2.org.afilias-nst.info / FRA4		•
	• b0.org.afilias-nst.org / app3.lax1.hosts.meta.redstone.afilias-nst.info-1617291492		•
	• b2.org.afilias-nst.org / FRA3		•
	• c0.org.afilias-nst.info / app9.nrt1.hosts.meta.redstone.afilias-nst.info-1615580861		•
	• d0.org.afilias-nst.org / app11.nrt1.hosts.meta.redstone.afilias-nst.info-1615580861		•

4. SOA-Entries

Domain:	org
Zone-Name:	org
Primary:	a0.org.afilias-nst.info
Mail:	hostmaster.donuts.email
Serial:	1759527097
Refresh:	7200
Retry:	900
Expire:	1209600
TTL:	3600
num Entries:	6

Domain:	markthibodeaux.org
Zone-Name:	markthibodeaux.org
Primary:	nolan.ns.cloudflare.com
Mail:	dns.cloudflare.com
Serial:	2384059861
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	12

Domain:	www.markthibodeaux.org
Zone-Name:	markthibodeaux.org
Primary:	nolan.ns.cloudflare.com
Mail:	dns.cloudflare.com
Serial:	2384059861
Refresh:	10000
Retry:	2400
Expire:	604800
TTL:	1800
num Entries:	1

5. Screenshots

Startaddress: https://www.markthibodeaux.org/, address used: https://www.markthibodeaux.org/, Screenshot created 2025-10-03 23:40:12 +00:0

Mobil (412px x 732px)

1060 milliseconds

Screenshot mobile - https://www.markthibodeaux.org/

Mobil + Landscape (732px x 412px)

1163 milliseconds

Screenshot mobile landscape - https://www.markthibodeaux.org/

Screen (1280px x 1680px)

1142 milliseconds

Screenshot Desktop - https://www.markthibodeaux.org/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	397	732
content Size	397	1065

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://www.markthibodeaux.org/ 104.21.75.253 br used - 2236 / 5975 - 62.58 %	403	Html is minified: 177.35 %	0.050	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=36,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=cMs4k1PLUjM0LsoJzqOZhGlA7TwslwLXPaKls%2FbvIu2C6Bjy8rAdJ9i2jWeQ12MYL%2BVfUfYRrBcAgzj6j3mUc2DT49ICfzo5Ni6i6X0QyCNwaT6L"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f97d68c87e529-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2236

• http://www.markthibodeaux.org/ 172.67.184.142 br used - 2228 / 5975 - 62.71 %	403	Html is minified: 177.35 %	0.027	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=15,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=owS6dSeU359LQmJ2u4z301Vx6ecoydw3V6DMrV9sx3b9nMu%2BiCsiQTxf%2BwBdew7hTicLfYuchtB7tezrnuY4ctEW6YpobGyFbUm3bgnEhG1rZ3Pc"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f97d6f854e532-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2228

• http://www.markthibodeaux.org/ 2606:4700:3030::6815:4bfd br used - 2232 / 5982 - 62.69 %	403	Html is minified: 177.19 %	0.023	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=10,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=S%2FOWM5nJXIXxIUasisH1BRs%2F9ronr3ezxqzjBlgn0bJo8rxYjZSJvnazE06q%2Bjtj7eY9i%2Fb2fxMV54up%2FKVoSShW6QiN2YKrrVnrNA2zp4iRcos6msVfG7MsJkr%2FAXlV"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f97d74e2633a5-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2232

• http://www.markthibodeaux.org/ 2606:4700:3037::ac43:b88e br used - 2243 / 5982 - 62.50 %	403	Html is minified: 177.19 %	0.010	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=1,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=60F9zOMM%2BQbGMNyNskWBGSswJdyGNktXuit2NNbXaBSjVLi2vTgPEsWv5eihnNPHojycj5ST1CBqwrO8wShrBe8RQIgS0%2BGu8ov01pFuaTu90FTf5WdIVrqZ%2FmMwfuUg"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f97d78963e532-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2243

• https://www.markthibodeaux.org/ 104.21.75.253 br used - 2235 / 5975 - 62.59 % Inline-JavaScript (∑/total): 4/1516 Inline-CSS (∑/total): 1/24	403	Html is minified: 177.35 % Other inline scripts (∑/total): 0/0	2.086	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:36 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=2,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bq8UcdcAC70mtpkfRJZoue6etVF16YqEFa1TGPh%2F8kkncWCOR5b1ry%2FxC4NhQbIEPVMRtn5b%2FUWtVtgjoWJ21Iw213fNKyCkF96zATvLdQ3Zo1IF"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f97d7ea6c6e5c-TXL
Alt-Svc: h3=":443"
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2235

• https://www.markthibodeaux.org/ 172.67.184.142 br used - 2229 / 5975 - 62.69 % Inline-JavaScript (∑/total): 4/1516 Inline-CSS (∑/total): 1/24	403	Html is minified: 177.35 % Other inline scripts (∑/total): 0/0	1.830	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=3,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bmhi8jAxNHQbIqOI%2ByyBY5MoGu1mpBlpk43%2FdRuLRFqBQAfXrwVxtNfXU8jegZOuhKGYFa0OSTZJqCJW6VlITB9Bz4kPhd6TRIVDZE2fheUkJEL%2F"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f97f6fe549965-TXL
Alt-Svc: h3=":443"
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2229

• https://www.markthibodeaux.org/ 2606:4700:3030::6815:4bfd br used - 2244 / 5982 - 62.49 % Inline-JavaScript (∑/total): 4/1516 Inline-CSS (∑/total): 1/24	403	Html is minified: 177.19 % Other inline scripts (∑/total): 0/0	1.804	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=2,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jHXF2r8EPLXpY%2Bl6%2BANrUylDwXCjH4cfVwF747GNpW7JMz4iHs4RXeW27%2B31fnI13AzV%2F5KGoMBQmce9n9velAMJdI63fTH7wNICqJ3xxQSIQkeUTJHQgB08Ph6gYexo"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f981268a08863-TXL
Alt-Svc: h3=":443"
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2244

• https://www.markthibodeaux.org/ 2606:4700:3037::ac43:b88e br used - 2244 / 5982 - 62.49 % Inline-JavaScript (∑/total): 4/1516 Inline-CSS (∑/total): 1/24	403	Html is minified: 177.19 % Other inline scripts (∑/total): 0/0	1.860	M
Forbidden
Date: Fri, 03 Oct 2025 21:39:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=3,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Q7OBTUt%2BP2JF0MTDDYRRammJlYfbBJBf8YAASGvgTfW7rnFAb2aAQo0W72%2FZDAACkYrDg%2BeEXoMQNf66c0IW2PS27Dce8CzzUMFk9dI6cYlU6OsyCfUUPKLuZ4lgLpBB"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f982e8fe7051f-TXL
Alt-Svc: h3=":443"
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 2244

• http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.21.75.253 br used - 1925 / 5056 - 61.93 % Inline-JavaScript (∑/total): 3/614 Inline-CSS (∑/total): 1/24	403	Html is minified: 150.07 % Other inline scripts (∑/total): 0/0	0.010	M
Forbidden
Visible Content:
Date: Fri, 03 Oct 2025 21:39:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=1,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=e%2B%2Fp%2BAia7rvNO2DBOQbe%2F0RbJJfCQp%2BPnqFZcr8xg3YnY01PiM2ujbF5tpJvxXc0W7XVSc3oKsi8U8%2FLPPDLukz0ma7%2FMRC5Vg16lVyxCswesXpB"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f98498cb8e529-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 1925

• http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 172.67.184.142 br used - 1925 / 5056 - 61.93 % Inline-JavaScript (∑/total): 3/614 Inline-CSS (∑/total): 1/24	403	Html is minified: 150.07 % Other inline scripts (∑/total): 0/0	0.016	M
Forbidden
Visible Content:
Date: Fri, 03 Oct 2025 21:39:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=1,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=sFmQFdmVN7khZnmHGmIpg0i46aRVUq8G2jj9%2BmrUyEB35Uu1I2dNdWjKzXkZDpQE2umTvPd55xulYor151v06Vz4l19M50N%2F6tjUY78mXitX5goK"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f984efdb9e532-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 1925

• http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2606:4700:3030::6815:4bfd br used - 1931 / 5063 - 61.86 % Inline-JavaScript (∑/total): 3/614 Inline-CSS (∑/total): 1/24	403	Html is minified: 149.97 % Other inline scripts (∑/total): 0/0	0.010	M
Forbidden
Visible Content:
Date: Fri, 03 Oct 2025 21:39:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=1,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=hDwDR1KrszUG2eLwvEBe%2FQn9m4LKRneeB4KJRmG9SkNMFWQjQjfYMfs%2FMS2AMJSsJjBTp4G7PTkyX6FJKVvH1%2Ff00qBHRREvB1%2BLbJeoBgZ36tOCOF3fDNfHXSO2k5XT"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f98548fe133a5-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 1931

• http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2606:4700:3037::ac43:b88e br used - 1931 / 5063 - 61.86 % Inline-JavaScript (∑/total): 3/614 Inline-CSS (∑/total): 1/24	403	Html is minified: 149.97 % Other inline scripts (∑/total): 0/0	0.013	M
Forbidden
Visible Content:
Date: Fri, 03 Oct 2025 21:39:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private, post-check=0, pre-check=0
Referrer-Policy: same-origin
Server-Timing: cfEdge;dur=1,cfOrigin;dur=0
X-Frame-Options: SAMEORIGIN
Vary: accept-encoding
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=FSu6W0uSpkzT%2FjUP8YmTjicn1kWbDAPWjT%2BUVWVBG09Zl0MMfC3Vis5%2FmWMmu%2Fe72R0unTqs%2FwmwNllFdQLzhAjyD03by3BBGBV%2F7aVCRZPB02PMlFrxsuuxG4LhjhbR"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
Server: cloudflare
CF-RAY: 988f9859e81fe532-TXL
Alt-Svc: h2=":443"; ma=60
Content-Type: text/html; charset=UTF-8
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Content-Encoding: br
Content-Length: 1931

• https://104.21.75.253/ 104.21.75.253	-103		0.030	P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'HandshakeFailure'. (FF: SSL_ERROR_NO_CYPHER_OVERLAP)

• https://172.67.184.142/ 172.67.184.142	-103		0.023	P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'HandshakeFailure'. (FF: SSL_ERROR_NO_CYPHER_OVERLAP)

• https://[2606:4700:3030:0000:0000:0000:6815:4bfd]/ 2606:4700:3030::6815:4bfd	-103		0.024	P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'HandshakeFailure'. (FF: SSL_ERROR_NO_CYPHER_OVERLAP)

• https://[2606:4700:3037:0000:0000:0000:ac43:b88e]/ 2606:4700:3037::ac43:b88e	-103		0.023	P
SecureConnectionError (3, 0x80131501). The SSL connection could not be established, see inner exception. Authentication failed because the remote party sent a TLS alert: 'HandshakeFailure'. (FF: SSL_ERROR_NO_CYPHER_OVERLAP)

7. Comments

	1. General Results, most used to calculate the result
A	name "markthibodeaux.org" is domain, public suffix is ".org", top-level-domain is ".org", top-level-domain-type is "generic", tld-manager is "Public Interest Registry (PIR)", num .org-domains preloaded: 10357 (complete: 276475)
A	Good: All ip addresses are public addresses
A	Good: Minimal 2 ip addresses per domain name found: www.markthibodeaux.org has 4 different ip addresses (authoritative).
A	Good: Ipv4 and Ipv6 addresses per domain name found: www.markthibodeaux.org has 2 ipv4, 2 ipv6 addresses
A	Good: No asked Authoritative Name Server had a timeout
A	Good: No cookie sent via http.
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
B	https://www.markthibodeaux.org/ 104.21.75.253	403	Missing HSTS-Header
B	https://www.markthibodeaux.org/ 172.67.184.142	403	Missing HSTS-Header
B	https://www.markthibodeaux.org/ 2606:4700:3030::6815:4bfd	403	Missing HSTS-Header
B	https://www.markthibodeaux.org/ 2606:4700:3037::ac43:b88e	403	Missing HSTS-Header
C	Error - no version with Http-Status 200
H	Fatal error: No https - result with http-status 200, no encryption
M	http://www.markthibodeaux.org/ 104.21.75.253	403	Misconfiguration - main pages should never send http status 400 - 499
M	http://www.markthibodeaux.org/ 172.67.184.142	403	Misconfiguration - main pages should never send http status 400 - 499
M	http://www.markthibodeaux.org/ 2606:4700:3030::6815:4bfd	403	Misconfiguration - main pages should never send http status 400 - 499
M	http://www.markthibodeaux.org/ 2606:4700:3037::ac43:b88e	403	Misconfiguration - main pages should never send http status 400 - 499
M	https://www.markthibodeaux.org/ 104.21.75.253	403	Misconfiguration - main pages should never send http status 400 - 499
M	https://www.markthibodeaux.org/ 172.67.184.142	403	Misconfiguration - main pages should never send http status 400 - 499
M	https://www.markthibodeaux.org/ 2606:4700:3030::6815:4bfd	403	Misconfiguration - main pages should never send http status 400 - 499
M	https://www.markthibodeaux.org/ 2606:4700:3037::ac43:b88e	403	Misconfiguration - main pages should never send http status 400 - 499
A	Good: More then one ip address per domain name found, checking all ip addresses the same http status and the same certificate found: Domain www.markthibodeaux.org, 4 ip addresses.
	Info: Checking the ip addresses of that domain name not exact one certificate found. So it's impossible to check if that domain requires Server Name Indication (SNI).: Domain www.markthibodeaux.org, 4 ip addresses.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.markthibodeaux.org
	2. Header-Checks
A	www.markthibodeaux.org 104.21.75.253	report-to	Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bq8UcdcAC70mtpkfRJZoue6etVF16YqEFa1TGPh%2F8kkncWCOR5b1ry%2FxC4NhQbIEPVMRtn5b%2FUWtVtgjoWJ21Iw213fNKyCkF96zATvLdQ3Zo1IF"}]}
A			Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bq8UcdcAC70mtpkfRJZoue6etVF16YqEFa1TGPh%2F8kkncWCOR5b1ry%2FxC4NhQbIEPVMRtn5b%2FUWtVtgjoWJ21Iw213fNKyCkF96zATvLdQ3Zo1IF"}]}
A		Referrer-Policy	Ok: Header without syntax errors found: same-origin
A		X-Frame-Options	Ok: Header without syntax errors found: SAMEORIGIN
B			Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A	www.markthibodeaux.org 172.67.184.142	report-to	Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bmhi8jAxNHQbIqOI%2ByyBY5MoGu1mpBlpk43%2FdRuLRFqBQAfXrwVxtNfXU8jegZOuhKGYFa0OSTZJqCJW6VlITB9Bz4kPhd6TRIVDZE2fheUkJEL%2F"}]}
A			Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=bmhi8jAxNHQbIqOI%2ByyBY5MoGu1mpBlpk43%2FdRuLRFqBQAfXrwVxtNfXU8jegZOuhKGYFa0OSTZJqCJW6VlITB9Bz4kPhd6TRIVDZE2fheUkJEL%2F"}]}
A		Referrer-Policy	Ok: Header without syntax errors found: same-origin
A		X-Frame-Options	Ok: Header without syntax errors found: SAMEORIGIN
B			Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	report-to	Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jHXF2r8EPLXpY%2Bl6%2BANrUylDwXCjH4cfVwF747GNpW7JMz4iHs4RXeW27%2B31fnI13AzV%2F5KGoMBQmce9n9velAMJdI63fTH7wNICqJ3xxQSIQkeUTJHQgB08Ph6gYexo"}]}
A			Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=jHXF2r8EPLXpY%2Bl6%2BANrUylDwXCjH4cfVwF747GNpW7JMz4iHs4RXeW27%2B31fnI13AzV%2F5KGoMBQmce9n9velAMJdI63fTH7wNICqJ3xxQSIQkeUTJHQgB08Ph6gYexo"}]}
A		Referrer-Policy	Ok: Header without syntax errors found: same-origin
A		X-Frame-Options	Ok: Header without syntax errors found: SAMEORIGIN
B			Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
A	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	report-to	Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Q7OBTUt%2BP2JF0MTDDYRRammJlYfbBJBf8YAASGvgTfW7rnFAb2aAQo0W72%2FZDAACkYrDg%2BeEXoMQNf66c0IW2PS27Dce8CzzUMFk9dI6cYlU6OsyCfUUPKLuZ4lgLpBB"}]}
A			Ok: Header without syntax errors found: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Q7OBTUt%2BP2JF0MTDDYRRammJlYfbBJBf8YAASGvgTfW7rnFAb2aAQo0W72%2FZDAACkYrDg%2BeEXoMQNf66c0IW2PS27Dce8CzzUMFk9dI6cYlU6OsyCfUUPKLuZ4lgLpBB"}]}
A		Referrer-Policy	Ok: Header without syntax errors found: same-origin
A		X-Frame-Options	Ok: Header without syntax errors found: SAMEORIGIN
B			Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
F	www.markthibodeaux.org 104.21.75.253	Content-Security-Policy	Critical: Missing Header:
F	www.markthibodeaux.org 104.21.75.253	X-Content-Type-Options	Critical: Missing Header:
F	www.markthibodeaux.org 104.21.75.253	Permissions-Policy	Critical: Missing Header:
B	www.markthibodeaux.org 104.21.75.253	Cross-Origin-Embedder-Policy	Info: Missing Header
B	www.markthibodeaux.org 104.21.75.253	Cross-Origin-Opener-Policy	Info: Missing Header
B	www.markthibodeaux.org 104.21.75.253	Cross-Origin-Resource-Policy	Info: Missing Header
F	www.markthibodeaux.org 172.67.184.142	Content-Security-Policy	Critical: Missing Header:
F	www.markthibodeaux.org 172.67.184.142	X-Content-Type-Options	Critical: Missing Header:
F	www.markthibodeaux.org 172.67.184.142	Permissions-Policy	Critical: Missing Header:
B	www.markthibodeaux.org 172.67.184.142	Cross-Origin-Embedder-Policy	Info: Missing Header
B	www.markthibodeaux.org 172.67.184.142	Cross-Origin-Opener-Policy	Info: Missing Header
B	www.markthibodeaux.org 172.67.184.142	Cross-Origin-Resource-Policy	Info: Missing Header
F	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	Content-Security-Policy	Critical: Missing Header:
F	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	X-Content-Type-Options	Critical: Missing Header:
F	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	Permissions-Policy	Critical: Missing Header:
B	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	Cross-Origin-Embedder-Policy	Info: Missing Header
B	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	Cross-Origin-Opener-Policy	Info: Missing Header
B	www.markthibodeaux.org 2606:4700:3030::6815:4bfd	Cross-Origin-Resource-Policy	Info: Missing Header
F	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	Content-Security-Policy	Critical: Missing Header:
F	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	X-Content-Type-Options	Critical: Missing Header:
F	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	Permissions-Policy	Critical: Missing Header:
B	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	Cross-Origin-Embedder-Policy	Info: Missing Header
B	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	Cross-Origin-Opener-Policy	Info: Missing Header
B	www.markthibodeaux.org 2606:4700:3037::ac43:b88e	Cross-Origin-Resource-Policy	Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 7 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 2 Name Servers.
A	Info:: 7 Queries complete, 7 with IPv6, 0 with IPv4.
A	Good: All DNS Queries done via IPv6.
	Ok (4 - 8):: An average of 3.5 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 2 different Name Servers found: nolan.ns.cloudflare.com, yolanda.ns.cloudflare.com, 2 Name Servers included in Delegation: nolan.ns.cloudflare.com, yolanda.ns.cloudflare.com, 2 Name Servers included in 1 Zone definitions: nolan.ns.cloudflare.com, yolanda.ns.cloudflare.com, 1 Name Servers listed in SOA.Primary: nolan.ns.cloudflare.com.
A	Good: Only one SOA.Primary Name Server found.: nolan.ns.cloudflare.com.
A	Good: SOA.Primary Name Server included in the delegation set.: nolan.ns.cloudflare.com.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: nolan.ns.cloudflare.com, yolanda.ns.cloudflare.com
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 2 different Name Servers found
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 2 Name Servers, 1 Top Level Domain: com
	Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: cloudflare.com
A	Good: Name servers with different Country locations found: 2 Name Servers, 4 Countries: CA, CR, GB, US
A	Info: Ipv4-Subnet-list: 6 Name Servers, 4 different subnets (first Byte): 108., 162., 172., 173., 4 different subnets (first two Bytes): 108.162., 162.159., 172.64., 173.245., 6 different subnets (first three Bytes): 108.162.192., 108.162.195., 162.159.44., 172.64.32., 172.64.35., 173.245.58.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Info: IPv6-Subnet-list: 6 Name Servers with IPv6, 3 different subnets (first block): 2606:, 2803:, 2a06:, 3 different subnets (first two blocks): 2606:4700:, 2803:f800:, 2a06:98c1:, 4 different subnets (first three blocks): 2606:4700:0050:, 2606:4700:0058:, 2803:f800:0050:, 2a06:98c1:0050:, 4 different subnets (first four blocks): 2606:4700:0050:0000:, 2606:4700:0058:0000:, 2803:f800:0050:0000:, 2a06:98c1:0050:0000:
A	Good: Name Server IPv6 addresses from different subnets found.
A	Good: Nameserver supports TCP connections: 12 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 12 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 12 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 12 good Nameserver
A	Good: All SOA have the same Serial Number
	Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.
	4. Content- and Performance-critical Checks
	http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 104.21.75.253	403	Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 172.67.184.142	403	Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2606:4700:3030::6815:4bfd	403	Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
	http://www.markthibodeaux.org/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 2606:4700:3037::ac43:b88e	403	Fatal: Check of /.well-known/acme-challenge/random-filename has a http status 401 / 403 Not Allowed / Forbidden. A http status 404 - Not Found - is expected. Creating a Letsencrypt certificate via http-01 challenge may not work. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: All script Elements (type text/javascript) and src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
A	Good: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 16 external CSS / JavaScript files found
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 8 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 8 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 16 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Info: No img element found, no alt attribute checked
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
A	Duration: 114270 milliseconds, 114.270 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

www.markthibodeaux.org

104.21.75.253

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.markthibodeaux.org

104.21.75.253

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=markthibodeaux.org
	2	CN=WE1, O=Google Trust Services, C=US
	3	CN=GTS Root R4, O=Google Trust Services LLC, C=US

www.markthibodeaux.org

172.67.184.142

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.markthibodeaux.org

172.67.184.142

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=markthibodeaux.org
	2	CN=WE1, O=Google Trust Services, C=US
	3	CN=GTS Root R4, O=Google Trust Services LLC, C=US

www.markthibodeaux.org

2606:4700:3030::6815:4bfd

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.markthibodeaux.org

2606:4700:3030::6815:4bfd

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=markthibodeaux.org
	2	CN=WE1, O=Google Trust Services, C=US
	3	CN=GTS Root R4, O=Google Trust Services LLC, C=US

www.markthibodeaux.org

2606:4700:3037::ac43:b88e

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.markthibodeaux.org

2606:4700:3037::ac43:b88e

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
Tls.1.1
Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=markthibodeaux.org
	2	CN=WE1, O=Google Trust Services, C=US
	3	CN=GTS Root R4, O=Google Trust Services LLC, C=US

9. Certificates

CN=markthibodeaux.org

15.09.2025

14.12.2025
184 days expired

markthibodeaux.org, *.markthibodeaux.org - 2 entries

CN=markthibodeaux.org

15.09.2025

14.12.2025
184 days expired

markthibodeaux.org, *.markthibodeaux.org - 2 entries

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	ECDSA SHA256
Serial Number:	73BC45E890D84E4413CCAC1F172ABD55
Thumbprint:	9C76DF57AA09C4BAA2A021B58F6A0D88800BE79C
SHA256 / Certificate:	DSx9gOlzJCVrcj8bxvg36DH53eYpIbZcRz66pxfSRe8=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	0108b630c6f5539a8ae2eceb863b7581e833bbfce68b49a765979818f2fd2a67
SHA256 hex / Subject Public Key Information (SPKI):	0108b630c6f5539a8ae2eceb863b7581e833bbfce68b49a765979818f2fd2a67 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://o.pki.goog/s/we1/c7w
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=WE1, O=Google Trust Services, C=US

13.12.2023

20.02.2029
expires in 980 days

CN=WE1, O=Google Trust Services, C=US

13.12.2023

20.02.2029
expires in 980 days

Keyalgorithm	EC Public Key (256 bit, prime256v1)
Signatur:	ECDSA SHA384
Serial Number:	7FF31977972C224A76155D13B6D685E3
Thumbprint:	108FBF794E18EC5347A414E4370CC4506C297AB2
SHA256 / Certificate:	HfwWBfutNY2LyET3bRUgP6ycpcGnn9SFf/ryhk++v5Y=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	908769e8d34477cc2cba0632c88605b22d7294c0840f78596d247c645b1afc0e
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=GTS Root R4, O=Google Trust Services LLC, C=US

15.11.2023

28.01.2028
expires in 591 days

CN=GTS Root R4, O=Google Trust Services LLC, C=US

15.11.2023

28.01.2028
expires in 591 days

Keyalgorithm	EC Public Key (384 bit, secp384r1)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	7FE530BF331343BEDD821610493D8A1B
Thumbprint:	932BED339AA69212C89375B79304B475490B89A0
SHA256 / Certificate:	drJ7gKWAJ9w88dpo2sFwEO2TmX0LYD4vrb6FASSTtac=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	9847e5653e5e9e847516e5cb818606aa7544a19be67fd7366d506988e8d84347
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE

01.09.1998

28.01.2028
expires in 591 days

CN=GlobalSign Root CA, OU=Root CA, O=GlobalSign nv-sa, C=BE

01.09.1998

28.01.2028
expires in 591 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA-1 with RSA Encryption
Serial Number:	040000000001154B5AC394
Thumbprint:	B1BC968BD4F49D622AA89A81F2150152A41D829C
SHA256 / Certificate:	69QQQOS7PsdCyeOB0x7ypBpItmhclufO88HfbNQzHJk=
SHA256 hex / Cert (DANE * 0 1):	ebd41040e4bb3ec742c9e381d31ef2a41a48b6685c96e7cef3c1df6cd4331c99
SHA256 hex / PublicKey (DANE * 1 1):	2bcee858158cf5465fc9d76f0dfa312fef25a4dca8501da9b46b67d1fbfa1b64
SHA256 hex / Subject Public Key Information (SPKI):	2bcee858158cf5465fc9d76f0dfa312fef25a4dca8501da9b46b67d1fbfa1b64
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuer				last 7 days	active	num Certs
CN=WE1, O=Google Trust Services, C=US				0	0	2
CN=Sectigo Public Server Authentication CA DV E36, O=Sectigo Limited, C=GB				0	0	1

CertSpotter-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
11880308555 precert	CN=WE1, O=Google Trust Services, C=US	2025-09-15 03:47:00	2025-12-14 04:44:06	*.markthibodeaux.org, markthibodeaux.org - 2 entries
11631801607 leaf cert	CN=Sectigo Public Server Authentication CA DV E36, O=Sectigo Limited, C=GB	2025-08-26 00:00:00	2025-11-24 00:23:23	*.markthibodeaux.org, markthibodeaux.org - 2 entries
11160415702 precert	CN=WE1, O=Google Trust Services, C=US	2025-07-17 19:18:12	2025-10-15 20:16:40	*.markthibodeaux.org, markthibodeaux.org - 2 entries

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

Issuer				last 7 days	active	num Certs
CN=WE1, O=Google Trust Services, C=US				0	0	3
CN=Sectigo ECC Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester				0	0	1
CN=Sectigo Public Server Authentication CA DV E36, O=Sectigo Limited, C=GB				0	0	1

CRT-Id	Issuer	not before	not after	Domain names	LE-Duplicate	next LE
21027034342 precert	CN=WE1, O=Google Trust Services, C=US	2025-09-15 01:47:00	2025-12-14 03:44:06	*.markthibodeaux.org, markthibodeaux.org 2 entries
20576617916 leaf cert	CN=Sectigo Public Server Authentication CA DV E36, O=Sectigo Limited, C=GB	2025-08-25 22:00:00	2025-11-23 23:23:23	*.markthibodeaux.org, markthibodeaux.org 2 entries
19740249598 precert	CN=WE1, O=Google Trust Services, C=US	2025-07-17 17:18:12	2025-10-15 18:16:40	*.markthibodeaux.org, markthibodeaux.org 2 entries
18504278679 precert	CN=WE1, O=Google Trust Services, C=US	2025-05-19 16:37:02	2025-08-17 17:35:35	*.markthibodeaux.org, markthibodeaux.org 2 entries
14688432684 precert	CN=Sectigo ECC Domain Validation Secure Server CA, O=Sectigo Limited, L=Salford, C=GB, ST=Greater Manchester	2024-09-24 22:00:00	2025-09-25 21:59:59	*.markthibodeaux.org, markthibodeaux.org 2 entries

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://www.markthibodeaux.org/ 104.21.75.253	a		1		0			0	0	0
	link	stylesheet	1	4,554 Bytes	0	1	0	0	0	0
	meta	other	5		0			0	0	0
	script		1	6,883 Bytes	0	0	1	1	0	1	0
https://www.markthibodeaux.org/ 172.67.184.142	a		1		0			0	0	0
	link	stylesheet	1	4,554 Bytes	0	1	0	0	0	0
	meta	other	5		0			0	0	0
	script		1	6,883 Bytes	0	0	1	1	0	1	0
https://www.markthibodeaux.org/ 2606:4700:3030::6815:4bfd	a		1		0			0	0	0
	link	stylesheet	1	4,554 Bytes	0	1	0	0	0	0
	meta	other	5		0			0	0	0
	script		1	6,883 Bytes	0	0	1	1	0	1	0
https://www.markthibodeaux.org/ 2606:4700:3037::ac43:b88e	a		1		0			0	0	0
	link	stylesheet	1	4,554 Bytes	0	1	0	0	0	0
	meta	other	5		0			0	0	0
	script		1	6,878 Bytes	0	0	1	1	0	1	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname	Html-Element	name/equiv/ property/rel	href/src/content	HttpStatus	∑
https://www.markthibodeaux.org/ 104.21.75.253	a		https://www.cloudflare.com/5xx-error-landing			1	ok
							ok


	link	stylesheet	/cdn-cgi/styles/cf.errors.css		200	1	ok
				text/css missing X-Content-Type-Options nosniff			ok
	No Cache-Control - header			Compression (br): 4554/24051 Bytes
	local SRI possible, possible hash-values: sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE= sha384-Z3NAcPj6Z8zEScbbj4SlGGpcl4i+2vp2Yg0FT1Ffh6LnNKsTAeZIMCEr2X2+kl9L sha512-bbdLJi1xeRbeCwtgDurSzGoQ5SqeJtcB+udh/LyTHzXyUVU2aakr47Uk84DzLmKsatVyvqI8eJZSKM6e+5LtQg== <link rel="stylesheet" href="/cdn-cgi/styles/cf.errors.css" crossorigin="anonymous" integrity="sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	Content-Type	text/html; charset=UTF-8			1	ok
							ok


	meta	X-UA-Compatible	IE=Edge			1	ok
							ok


	meta	robots	noindex, nofollow			1	ok
							ok


	meta	viewport	width=device-width,initial-scale=1			1	ok
							ok


	script	src	https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015		200	1	ok
	defer attribute found			text/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff			ok
				Compression (gzip): 6883/19948 Bytes
	ETag: W/"2024.6.1"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	integrity: sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ== crossorigin: anonymous				No SRI Parse error		valid

172.67.184.142	a		https://www.cloudflare.com/5xx-error-landing			1	ok
							ok


	link	stylesheet	/cdn-cgi/styles/cf.errors.css		200	1	ok
				text/css missing X-Content-Type-Options nosniff			ok
	No Cache-Control - header			Compression (br): 4554/24051 Bytes
	local SRI possible, possible hash-values: sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE= sha384-Z3NAcPj6Z8zEScbbj4SlGGpcl4i+2vp2Yg0FT1Ffh6LnNKsTAeZIMCEr2X2+kl9L sha512-bbdLJi1xeRbeCwtgDurSzGoQ5SqeJtcB+udh/LyTHzXyUVU2aakr47Uk84DzLmKsatVyvqI8eJZSKM6e+5LtQg== <link rel="stylesheet" href="/cdn-cgi/styles/cf.errors.css" crossorigin="anonymous" integrity="sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	Content-Type	text/html; charset=UTF-8			1	ok
							ok


	meta	X-UA-Compatible	IE=Edge			1	ok
							ok


	meta	robots	noindex, nofollow			1	ok
							ok


	meta	viewport	width=device-width,initial-scale=1			1	ok
							ok


	script	src	https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015		200	1	ok
	defer attribute found			text/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff			ok
				Compression (gzip): 6883/19948 Bytes
	ETag: W/"2024.6.1"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	integrity: sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ== crossorigin: anonymous				No SRI Parse error		valid

2606:4700:3030::6815:4bfd	a		https://www.cloudflare.com/5xx-error-landing			1	ok
							ok


	link	stylesheet	/cdn-cgi/styles/cf.errors.css		200	1	ok
				text/css missing X-Content-Type-Options nosniff			ok
	No Cache-Control - header			Compression (br): 4554/24051 Bytes
	local SRI possible, possible hash-values: sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE= sha384-Z3NAcPj6Z8zEScbbj4SlGGpcl4i+2vp2Yg0FT1Ffh6LnNKsTAeZIMCEr2X2+kl9L sha512-bbdLJi1xeRbeCwtgDurSzGoQ5SqeJtcB+udh/LyTHzXyUVU2aakr47Uk84DzLmKsatVyvqI8eJZSKM6e+5LtQg== <link rel="stylesheet" href="/cdn-cgi/styles/cf.errors.css" crossorigin="anonymous" integrity="sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	Content-Type	text/html; charset=UTF-8			1	ok
							ok


	meta	X-UA-Compatible	IE=Edge			1	ok
							ok


	meta	robots	noindex, nofollow			1	ok
							ok


	meta	viewport	width=device-width,initial-scale=1			1	ok
							ok


	script	src	https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015		200	1	ok
	defer attribute found			text/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff			ok
				Compression (gzip): 6883/19948 Bytes
	ETag: W/"2024.6.1"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	integrity: sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ== crossorigin: anonymous				No SRI Parse error		valid

2606:4700:3037::ac43:b88e	a		https://www.cloudflare.com/5xx-error-landing			1	ok
							ok


	link	stylesheet	/cdn-cgi/styles/cf.errors.css		200	1	ok
				text/css missing X-Content-Type-Options nosniff			ok
	No Cache-Control - header			Compression (br): 4554/24051 Bytes
	local SRI possible, possible hash-values: sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE= sha384-Z3NAcPj6Z8zEScbbj4SlGGpcl4i+2vp2Yg0FT1Ffh6LnNKsTAeZIMCEr2X2+kl9L sha512-bbdLJi1xeRbeCwtgDurSzGoQ5SqeJtcB+udh/LyTHzXyUVU2aakr47Uk84DzLmKsatVyvqI8eJZSKM6e+5LtQg== <link rel="stylesheet" href="/cdn-cgi/styles/cf.errors.css" crossorigin="anonymous" integrity="sha256-hOPHcCWs5a8UOXK0pA/INNzf1ORJ1LNqV+YjJvFrMJE=" />

	meta	charset	UTF-8			1	ok
							ok


	meta	Content-Type	text/html; charset=UTF-8			1	ok
							ok


	meta	X-UA-Compatible	IE=Edge			1	ok
							ok


	meta	robots	noindex, nofollow			1	ok
							ok


	meta	viewport	width=device-width,initial-scale=1			1	ok
							ok


	script	src	https://static.cloudflareinsights.com/beacon.min.js/vcd15cbe7772f49c399c6a5babf22c1241717689176015		200	1	ok
	defer attribute found			text/javascript; charset=UTF-8 missing X-Content-Type-Options nosniff			ok
				Compression (gzip): 6878/19948 Bytes
	ETag: W/"2024.6.1"
	Server-Header Access-Control-Allow-Origin: *			Cross-Origin Resource Sharing (CORS) supported
	integrity: sha512-ZpsOmlRQV6y907TI0dKBHq9Md29nnaEIPlkf84rnaERnq6zvWvPUqr2ft8M1aS28oN72PdrCzSjY4U6VaAw1EQ== crossorigin: anonymous				No SRI Parse error		valid

12. Html-Parsing via https://validator.w3.org/nu/

No https result http status 200 and Content-Type text/html or text/xml found, no Html-Parsing - Check

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: nolan.ns.cloudflare.com, yolanda.ns.cloudflare.com

QNr.	Domain	Type	NS used
1	com	NS	k.root-servers.net (2001:7fd::1)
	Answer: a.gtld-servers.net, b.gtld-servers.net, c.gtld-servers.net, d.gtld-servers.net, e.gtld-servers.net, f.gtld-servers.net, g.gtld-servers.net, h.gtld-servers.net, i.gtld-servers.net, j.gtld-servers.net, k.gtld-servers.net, l.gtld-servers.net, m.gtld-servers.net
2	nolan.ns.cloudflare.com	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: ns3.cloudflare.com, ns4.cloudflare.com, ns5.cloudflare.com, ns6.cloudflare.com, ns7.cloudflare.com
	Answer: ns3.cloudflare.com 162.159.0.33, 162.159.7.226, 2400:cb00:2049:1::a29f:21, 2400:cb00:2049:1::a29f:7e2
	Answer: ns4.cloudflare.com 162.159.1.33, 162.159.8.55, 2400:cb00:2049:1::a29f:121, 2400:cb00:2049:1::a29f:837
	Answer: ns5.cloudflare.com 162.159.2.9, 162.159.9.55, 2400:cb00:2049:1::a29f:209, 2400:cb00:2049:1::a29f:937
	Answer: ns6.cloudflare.com 162.159.3.11, 162.159.5.6, 2400:cb00:2049:1::a29f:30b, 2400:cb00:2049:1::a29f:506
	Answer: ns7.cloudflare.com 162.159.4.8, 162.159.6.6, 2400:cb00:2049:1::a29f:408, 2400:cb00:2049:1::a29f:606
3	yolanda.ns.cloudflare.com	NS	a.gtld-servers.net (2001:503:a83e::2:30)
	Answer: ns3.cloudflare.com, ns4.cloudflare.com, ns5.cloudflare.com, ns6.cloudflare.com, ns7.cloudflare.com
	Answer: ns3.cloudflare.com 162.159.0.33, 162.159.7.226, 2400:cb00:2049:1::a29f:21, 2400:cb00:2049:1::a29f:7e2
	Answer: ns4.cloudflare.com 162.159.1.33, 162.159.8.55, 2400:cb00:2049:1::a29f:121, 2400:cb00:2049:1::a29f:837
	Answer: ns5.cloudflare.com 162.159.2.9, 162.159.9.55, 2400:cb00:2049:1::a29f:209, 2400:cb00:2049:1::a29f:937
	Answer: ns6.cloudflare.com 162.159.3.11, 162.159.5.6, 2400:cb00:2049:1::a29f:30b, 2400:cb00:2049:1::a29f:506
	Answer: ns7.cloudflare.com 162.159.4.8, 162.159.6.6, 2400:cb00:2049:1::a29f:408, 2400:cb00:2049:1::a29f:606
4	nolan.ns.cloudflare.com: 108.162.195.56, 162.159.44.56, 172.64.35.56	A	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
5	nolan.ns.cloudflare.com: 2606:4700:58::a29f:2c38, 2803:f800:50::6ca2:c338, 2a06:98c1:50::ac40:2338	AAAA	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
6	yolanda.ns.cloudflare.com: 108.162.192.241, 172.64.32.241, 173.245.58.241	A	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)
7	yolanda.ns.cloudflare.com: 2606:4700:50::adf5:3af1, 2803:f800:50::6ca2:c0f1, 2a06:98c1:50::ac40:20f1	AAAA	ns3.cloudflare.com (2400:cb00:2049:1::a29f:21)

14. CAA - Entries

Domainname	Value	∑ Queries
www.markthibodeaux.org	no CAA entry found	1
markthibodeaux.org	no CAA entry found	1
org	no CAA entry found	1

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
markthibodeaux.org	google-site-verification=Tj9Yi2KAR3l6Dc_TjgtbOdaGoXT6F7KJ86d45cg3lPs	ok	1
www.markthibodeaux.org		ok	1
_acme-challenge.markthibodeaux.org		missing entry or wrong length	1
_acme-challenge.www.markthibodeaux.org		missing entry or wrong length	1
_acme-challenge.markthibodeaux.org.markthibodeaux.org		perhaps wrong	1
_acme-challenge.www.markthibodeaux.org.markthibodeaux.org		perhaps wrong	1
_acme-challenge.www.markthibodeaux.org.www.markthibodeaux.org		perhaps wrong	1

16. DomainService - Entries

Type		Domain	Pref	Value	num Answers	Status
MX		markthibodeaux.org	1	smtp.google.com	1	ok
	A			142.250.110.27	5	ok
	A			142.251.168.26	5	ok
	A			142.251.168.27	5	ok
	A			64.233.184.27	5	ok
	A			64.233.184.26	5	ok
	AAAA			2a00:1450:400c:c0d::1a	4	ok
	AAAA			2a00:1450:400c:c1d::1b	4	ok
	AAAA			2a00:1450:400c:c1d::1a	4	ok
	AAAA			2a00:1450:400c:c0b::1b	4	ok
	CNAME				0	ok

17. Cipher Suites

Skipped, CDN used or too many ip addresses

18. Portchecks

No open Ports <> 80 / 443 found, so no additional Ports checked.

Permalink: https://check-your-website.server-daten.de/?i=8bc69f43-6f1c-49a1-a015-094ebb0943cf

Last Result: https://check-your-website.server-daten.de/?q=markthibodeaux.org - 2025-10-03 23:38:25

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=markthibodeaux.org" target="_blank">Check this Site: markthibodeaux.org</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=markthibodeaux.org

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks