Check DNS, Urls + Redirects, Certificates and Content of your Website

...

skip EDNS-Check

skip Content-Check

check links

No trusted Certificate

Checked:
15.04.2025 11:06:24

Older results

No older results found

1. IP-Addresses

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
mhm.polonuspks.pl	A	77.79.220.2 Warsaw/Mazovia/Poland (PL) - ATMAN Hostname: host2.pks.pl	yes	1	0
	AAAA		yes
www.mhm.polonuspks.pl	A	77.79.220.2 Warsaw/Mazovia/Poland (PL) - ATMAN Hostname: host2.pks.pl	yes	1	0
	AAAA		yes
*.polonuspks.pl	A	77.79.220.2	yes
	AAAA		yes
	CNAME		yes
*.mhm.polonuspks.pl	A	77.79.220.2	yes
	AAAA		yes
	CNAME		yes

2. DNSSEC

Zone (*)	DNSSEC - Informations

Zone: (root)
(root)	1 DS RR published


	DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=


	• Status: Valid because published


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 53148, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 02.05.2025, 00:00:00 +, Signature-Inception: 11.04.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: pl
pl	1 DS RR in the parent zone found


	DS with Algorithm 8, KeyTag 35456, DigestType 2 and Digest wfzIjHPMuvqi1taFdbAe11N4bNczpKI5Mk1WCX8Xkws=


	1 RRSIG RR to validate DS RR found


	RRSIG-Owner pl., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 28.04.2025, 05:00:00 +, Signature-Inception: 15.04.2025, 04:00:00 +, KeyTag 53148, Signer-Name: (root)


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 53148 used to validate the DS RRSet in the parent zone


	3 DNSKEY RR found


	Public Key with Algorithm 8, KeyTag 35456, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 42290, Flags 257 (SEP = Secure Entry Point)


	Public Key with Algorithm 8, KeyTag 50175, Flags 256


	1 RRSIG RR to validate DNSKEY RR found


	RRSIG-Owner pl., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 13.05.2025, 12:00:00 +, Signature-Inception: 13.04.2025, 12:00:00 +, KeyTag 35456, Signer-Name: pl


	• Status: Good - Algorithmus 8 and DNSKEY with KeyTag 35456 used to validate the DNSKEY RRSet


	• Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 35456, DigestType 2 and Digest "wfzIjHPMuvqi1taFdbAe11N4bNczpKI5Mk1WCX8Xkws=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: polonuspks.pl
polonuspks.pl	0 DS RR in the parent zone found


	DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "hljdqcsc2rklpm245vvf708se6r4fid1" between the hashed NSEC3-owner "hljdq945fuipafaabecrlus4vsemlmhl" and the hashed NextOwner "hljhuf6n091ju1bni7vqrsqhpshmkv8q". So the parent zone confirmes the not-existence of a DS RR. Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner hljdq945fuipafaabecrlus4vsemlmhl.pl., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 13.05.2025, 12:00:00 +, Signature-Inception: 13.04.2025, 12:00:00 +, KeyTag 50175, Signer-Name: pl


	DS-Query in the parent zone sends valid NSEC3 RR with the Hash "mrof8eq330kb76vknjr9r61i8bg3qf4q" as Owner. That's the Hash of "pl" with the NextHashedOwnerName "mrohr2hheudg1ogkmrcf8onavevhes9h". So that domain name is the Closest Encloser of "polonuspks.pl". Opt-Out: True. Bitmap: NS, SOA, TXT, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner mrof8eq330kb76vknjr9r61i8bg3qf4q.pl., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 13.05.2025, 12:00:00 +, Signature-Inception: 13.04.2025, 12:00:00 +, KeyTag 50175, Signer-Name: pl


	0 DNSKEY RR found




Zone: mhm.polonuspks.pl
mhm.polonuspks.pl	0 DS RR in the parent zone found


	0 DNSKEY RR found




Zone: www.mhm.polonuspks.pl
www.mhm.polonuspks.pl	0 DS RR in the parent zone found

3. Name Servers

Domain	Nameserver	NS-IP
www.mhm.polonuspks.pl	• dns1.tld.pl / dns		•
mhm.polonuspks.pl	• dns1.tld.pl / dns	94.152.255.104 Poznan/Greater Poland/Poland (PL) - Cyber_Folks S.A.	•
polonuspks.pl	• dns1.tld.pl / dns	94.152.255.104 Poznan/Greater Poland/Poland (PL) - Cyber_Folks S.A.	•
	• dns2.tld.pl / dns	94.152.254.104 Poznan/Greater Poland/Poland (PL) - Cyber_Folks S.A.	•
	• dns3.tld.pl / dns	94.152.254.154 Poznan/Greater Poland/Poland (PL) - Cyber_Folks S.A.	•
pl	• a-dns.pl / a-atm		•
	• b-dns.pl / b-nask		•
	• d-dns.pl / LHR3		•
	• f-dns.pl / tld-all-ffm1@53029		•
	• h-dns.pl / FRA1		•
	• j-dns.pl / 1.ams.pch		•

4. SOA-Entries

Domain:	pl
Zone-Name:	pl
Primary:	a-dns.pl
Mail:	dnsmaster.nask.pl
Serial:	1744698649
Refresh:	900
Retry:	300
Expire:	2592000
TTL:	3600
num Entries:	6

Domain:	polonuspks.pl
Zone-Name:	polonuspks.pl
Primary:	dns1.tld.pl
Mail:	pomoc.domeny.pl
Serial:	2022062902
Refresh:	10800
Retry:	1800
Expire:	604800
TTL:	3600
num Entries:	3

Domain:	mhm.polonuspks.pl
Zone-Name:	polonuspks.pl
Primary:	dns1.tld.pl
Mail:	pomoc.domeny.pl
Serial:	2022062902
Refresh:	10800
Retry:	1800
Expire:	604800
TTL:	3600
num Entries:	1

Domain:	www.mhm.polonuspks.pl
Zone-Name:	polonuspks.pl
Primary:	dns1.tld.pl
Mail:	pomoc.domeny.pl
Serial:	2022062902
Refresh:	10800
Retry:	1800
Expire:	604800
TTL:	3600
num Entries:	1

5. Screenshots

Startaddress: https://bip.pkspolonus.pl/, address used: https://bip.pkspolonus.pl/, Screenshot created 2025-04-15 11:11:22 +00:0

Mobil (412px x 732px)

1061 milliseconds

Screenshot mobile - https://bip.pkspolonus.pl/

Mobil + Landscape (732px x 412px)

1060 milliseconds

Screenshot mobile landscape - https://bip.pkspolonus.pl/

Screen (1280px x 1680px)

1163 milliseconds

Screenshot Desktop - https://bip.pkspolonus.pl/

Mobile- and other Chrome-Checks

	width	height
visual Viewport	396	716
content Size	1052	838

Fatal: Horizontal scrollbar detected. Content-size width is greater then visual Viewport width.

6. Url-Checks

show header:

Domainname	Http-Status	redirect	Sec.	G
• http://mhm.polonuspks.pl/ 77.79.220.2	301	https://mhm.polonuspks.pl/ Html is minified: 109.46 %	0.043	A
Server: nginx
Date: Tue, 15 Apr 2025 09:06:56 GMT
Connection: keep-alive
Location: https://mhm.polonuspks.pl/
Content-Type: text/html
Content-Length: 162

• http://www.mhm.polonuspks.pl/ 77.79.220.2	301	https://www.mhm.polonuspks.pl/ Html is minified: 109.46 %	0.027	A
Server: nginx
Date: Tue, 15 Apr 2025 09:06:56 GMT
Connection: keep-alive
Location: https://www.mhm.polonuspks.pl/
Content-Type: text/html
Content-Length: 162

• https://mhm.polonuspks.pl/ 77.79.220.2	301	https://bip.pkspolonus.pl/ Html is minified: 109.46 %	7.137	N
Certificate error: RemoteCertificateNameMismatch
Server: nginx
Date: Tue, 15 Apr 2025 09:06:56 GMT
Connection: keep-alive
Location: https://bip.pkspolonus.pl/
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Type: text/html
Content-Length: 162

• https://www.mhm.polonuspks.pl/ 77.79.220.2	301	https://bip.pkspolonus.pl/ Html is minified: 109.46 %	6.907	N
Certificate error: RemoteCertificateNameMismatch
Server: nginx
Date: Tue, 15 Apr 2025 09:07:05 GMT
Connection: keep-alive
Location: https://bip.pkspolonus.pl/
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Type: text/html
Content-Length: 162

• https://bip.pkspolonus.pl/ gzip used - 3755 / 10194 - 63.16 % Inline-JavaScript (∑/total): 2/1990 Inline-CSS (∑/total): 0/0	200	Html is minified: 116.00 % Other inline scripts (∑/total): 0/0	8.350	I
Server: nginx
Date: Tue, 15 Apr 2025 09:07:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: 502a6920d22256a8d90db9046c4c4bcc=n22pkug2016ssunmcr4v233g6n; path=/; HttpOnly
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Cache-Control: no-store, must-revalidate, no-cache, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Last-Modified: Tue, 15 Apr 2025 09:07:29 GMT
Content-Encoding: gzip
Content-Length: 3755

• http://mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 77.79.220.2 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 109.46 % Other inline scripts (∑/total): 0/0	0.496	A
Visible Content:
Server: nginx
Date: Tue, 15 Apr 2025 09:07:14 GMT
Connection: keep-alive
Location: https://mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Type: text/html
Content-Length: 162

• http://www.mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 77.79.220.2 Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://www.mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 109.46 % Other inline scripts (∑/total): 0/0	0.557	A
Visible Content:
Server: nginx
Date: Tue, 15 Apr 2025 09:07:16 GMT
Connection: keep-alive
Location: https://www.mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Content-Type: text/html
Content-Length: 162

• https://mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 109.46 % Other inline scripts (∑/total): 0/0	6.816	N
Certificate error: RemoteCertificateNameMismatch
Visible Content:
Server: nginx
Date: Tue, 15 Apr 2025 09:07:39 GMT
Connection: keep-alive
Location: https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Type: text/html
Content-Length: 162

• https://www.mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	301	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de Html is minified: 109.46 % Other inline scripts (∑/total): 0/0	6.793	N
Certificate error: RemoteCertificateNameMismatch
Visible Content:
Server: nginx
Date: Tue, 15 Apr 2025 09:07:48 GMT
Connection: keep-alive
Location: https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Type: text/html
Content-Length: 162

• https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de gzip used - 3755 / 10194 - 63.16 % Inline-JavaScript (∑/total): 2/1990 Inline-CSS (∑/total): 0/0	200	Html is minified: 116.00 % Other inline scripts (∑/total): 0/0	7.850
Visible Content:
Server: nginx
Date: Tue, 15 Apr 2025 09:07:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Cache-Control: no-store, must-revalidate, no-cache, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Type: text/html; charset=utf-8
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Last-Modified: Tue, 15 Apr 2025 09:07:56 GMT
Content-Encoding: gzip
Content-Length: 3755

• https://77.79.220.2/ 77.79.220.2	301	https://bip.pkspolonus.pl/ Html is minified: 109.46 %	7.360	N
Certificate error: RemoteCertificateNameMismatch
Server: nginx
Date: Tue, 15 Apr 2025 09:07:19 GMT
Connection: keep-alive
Location: https://bip.pkspolonus.pl/
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Type: text/html
Content-Length: 162

7. Comments

	1. General Results, most used to calculate the result
A	name "mhm.polonuspks.pl" is subdomain, public suffix is ".pl", top-level-domain is ".pl", top-level-domain-type is "country-code", Country is Poland, tld-manager is "Research and Academic Computer Network", num .pl-domains preloaded: 2069 (complete: 270180)
A	Good: All ip addresses are public addresses
	Warning: Only one ip address found: mhm.polonuspks.pl has only one ip address.
	Warning: Only one ip address found: www.mhm.polonuspks.pl has only one ip address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: mhm.polonuspks.pl has no ipv6 address.
	Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.mhm.polonuspks.pl has no ipv6 address.
A	Good: No asked Authoritative Name Server had a timeout
A	https://mhm.polonuspks.pl/ 77.79.220.2	301	https://bip.pkspolonus.pl/	Correct redirect https to https
A	https://mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	301	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	Correct redirect https to https
A	https://77.79.220.2/ 77.79.220.2	301	https://bip.pkspolonus.pl/	Correct redirect https to https
A	Good: destination is https
A	Good - only one version with Http-Status 200
A	Good: one preferred version: non-www is preferred
A	Good: No cookie sent via http.
A	Good: every https has a Strict Transport Security Header
A	Good: HSTS max-age is long enough, 31536000 seconds = 365 days
A	Good: HSTS has includeSubdomains - directive
	HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
A	Good: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
A	http://mhm.polonuspks.pl/ 77.79.220.2	301	https://mhm.polonuspks.pl/	Correct redirect http - https with the same domain name
A	http://www.mhm.polonuspks.pl/ 77.79.220.2	301	https://www.mhm.polonuspks.pl/	Correct redirect http - https with the same domain name
B	https://bip.pkspolonus.pl/	200	502a6920d22256a8d90db9046c4c4bcc=n22pkug2016ssunmcr4v233g6n; path=/; HttpOnly	Cookie sent via https, but not marked as secure
B	https://bip.pkspolonus.pl/	200	502a6920d22256a8d90db9046c4c4bcc=n22pkug2016ssunmcr4v233g6n; path=/; HttpOnly	Cookie without a SameSite-Attribute. Possible values are: Strict/Lax/None. Cookie may not work as expected, if "None" is wanted, but browsers use "Lax" as default value.
I	https://bip.pkspolonus.pl/	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
I	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
N	https://mhm.polonuspks.pl/ 77.79.220.2	301	https://bip.pkspolonus.pl/	Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://www.mhm.polonuspks.pl/ 77.79.220.2	301	https://bip.pkspolonus.pl/	Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	301	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://www.mhm.polonuspks.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	301	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	https://77.79.220.2/ 77.79.220.2	301	https://bip.pkspolonus.pl/	Error - Certificate isn't trusted, RemoteCertificateNameMismatch
N	mhm.polonuspks.pl:8443			Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
N	www.mhm.polonuspks.pl:8443			Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
O	mhm.polonuspks.pl / 77.79.220.2 / 8443			Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 2 Cipher Suites without Forward Secrecy found
O	www.mhm.polonuspks.pl / 77.79.220.2 / 8443			Old connection: Cipher Suites without Forward Secrecy (FS) found. Remove all of these Cipher Suites, use only Cipher Suites with Forward Secrecy: Starting with ECDHE- or DHE - the last "E" says: "ephemeral". Or use Tls.1.3, then all Cipher Suites use FS. 2 Cipher Suites without Forward Secrecy found
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain mhm.polonuspks.pl, 1 ip addresses, 1 different http results.
	Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain www.mhm.polonuspks.pl, 1 ip addresses, 1 different http results.
B	No _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.mhm.polonuspks.pl
	2. Header-Checks
A	bip.pkspolonus.pl	X-Content-Type-Options		Ok: Header without syntax errors found: nosniff
A		X-Frame-Options		Ok: Header without syntax errors found: SAMEORIGIN
B				Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
F	bip.pkspolonus.pl	Content-Security-Policy		Critical: Missing Header:
F	bip.pkspolonus.pl	Referrer-Policy		Critical: Missing Header:
F	bip.pkspolonus.pl	Permissions-Policy		Critical: Missing Header:
B	bip.pkspolonus.pl	Cross-Origin-Embedder-Policy		Info: Missing Header
B	bip.pkspolonus.pl	Cross-Origin-Opener-Policy		Info: Missing Header
B	bip.pkspolonus.pl	Cross-Origin-Resource-Policy		Info: Missing Header
	3. DNS- and NameServer - Checks
A	Info:: 10 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 3 Name Servers.
A	Info:: 10 Queries complete, 4 with IPv6, 6 with IPv4.
	Warning: Only some DNS Queries done via ipv6. IPv6 is the future, so the name servers of your name servers should have ipv6 addresses.
	Ok (4 - 8):: An average of 3.3 queries per domain name server required to find all ip addresses of all name servers.
A	Info:: 3 different Name Servers found: dns1.tld.pl, dns2.tld.pl, dns3.tld.pl, 3 Name Servers included in Delegation: dns1.tld.pl, dns2.tld.pl, dns3.tld.pl, 3 Name Servers included in 1 Zone definitions: dns1.tld.pl, dns2.tld.pl, dns3.tld.pl, 1 Name Servers listed in SOA.Primary: dns1.tld.pl.
A	Good: Only one SOA.Primary Name Server found.: dns1.tld.pl.
A	Good: SOA.Primary Name Server included in the delegation set.: dns1.tld.pl.
A	Good: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: dns1.tld.pl, dns2.tld.pl, dns3.tld.pl
A	Good: All Name Server Domain Names have a Public Suffix.
A	Good: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
A	Good: All Name Server ip addresses are public.
A	Good: Minimal 2 different name servers (public suffix and public ip address) found: 3 different Name Servers found
	Warning: No Name Server IPv6 address found. IPv6 is the future, so your name servers should be visible via IPv6.: 3 different Name Servers found
	Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 3 Name Servers, 1 Top Level Domain: pl
	Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: tld.pl
	Warning: All Name Servers from the same Country / IP location.: 3 Name Servers, 1 Countries: PL
A	Info: Ipv4-Subnet-list: 3 Name Servers, 1 different subnets (first Byte): 94., 1 different subnets (first two Bytes): 94.152., 2 different subnets (first three Bytes): 94.152.254., 94.152.255.
A	Good: Name Server IPv4-addresses from different subnet found:
A	Good: Nameserver supports TCP connections: 1 good Nameserver
A	Good: Nameserver supports Echo Capitalization: 1 good Nameserver
A	Good: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 1 good Nameserver
A	Good: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 1 good Nameserver
A	Good: All SOA have the same Serial Number
	Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate. Read https://en.wikipedia.org/wiki/DNS_Certification_Authority_Authorization to learn some basics about the idea of CAA. Your name server must support such an entry. Not all dns providers support CAA entries.
	4. Content- and Performance-critical Checks
	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
A	Good: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
	https://bip.pkspolonus.pl/	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
	https://bip.pkspolonus.pl/	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
A	Good: Every https connection via port 443 supports the http/2 protocol via ALPN.
	https://bip.pkspolonus.pl/	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
	https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	200		Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 6 script elements without defer/async.
	Warning: CSS / JavaScript found without Compression. Compress these ressources, gzip, deflate, br are checked. 10 external CSS / JavaScript files without Compression found - 0 with Compression, 10 complete
	Warning: CSS / JavaScript files with a missing or too short Cache-Control header found. Browsers should cache and re-use these files. 18 external CSS / JavaScript files without Cache-Control-Header, 0 with Cache-Control, but no max-age, 0 with Cache-Control max-age too short (minimum 7 days), 0 with Cache-Control long enough, 18 complete.
A	Good: All checked attribute values are enclosed in quotation marks (" or ').
A	Info: No img element found, no alt attribute checked
A	Good: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
A	Duration: 304907 milliseconds, 304.907 seconds

8. Connections

Domain

Port

Cert.

Protocol

KeyExchange

Strength

Cipher

Strength

HashAlgorithm

OCSP stapling

Domain/KeyExchange

IP/Strength

Port/Cipher

Cert./Strength

Protocol/HashAlgorithm

OCSP stapling

bip.pkspolonus.pl

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

bip.pkspolonus.pl

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

mhm.polonuspks.pl

77.79.220.2

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

mhm.polonuspks.pl

77.79.220.2

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

www.mhm.polonuspks.pl

77.79.220.2

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.mhm.polonuspks.pl

77.79.220.2

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

bip.pkspolonus.pl

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

bip.pkspolonus.pl

443

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

mhm.polonuspks.pl

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

mhm.polonuspks.pl

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

www.mhm.polonuspks.pl

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

www.mhm.polonuspks.pl

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

77.79.220.2

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

77.79.220.2

443

name does not match

Tls12

ECDH Ephermal

255

Aes128

128

Sha256

not supported

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported
Cert sent without SNI

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain (complete)	1	CN=bip.pkspolonus.pl
	2	CN=R11, O=Let's Encrypt, C=US

mhm.polonuspks.pl

77.79.220.2

8443

Certificate/chain invalid and wrong name

Tls12

RsaKeyX

2048

Aes256

256

Sha256

not supported

weak

mhm.polonuspks.pl

77.79.220.2

8443

Certificate/chain invalid and wrong name

Tls12

RsaKeyX

2048

Aes256

256

Sha256

not supported

weak

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=FG100E4Q16004139, OU=FortiGate, O=Fortinet, L=Sunnyvale, C=US, emailAddress=support@fortinet.com
	2	CN=support, OU=Certificate Authority, O=Fortinet, L=Sunnyvale, C=US, emailAddress=support@fortinet.com

www.mhm.polonuspks.pl

77.79.220.2

8443

Certificate/chain invalid and wrong name

Tls12

RsaKeyX

2048

Aes256

256

Sha256

not supported

weak

www.mhm.polonuspks.pl

77.79.220.2

8443

Certificate/chain invalid and wrong name

Tls12

RsaKeyX

2048

Aes256

256

Sha256

not supported

weak

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

http/2 via ALPN supported

Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2

Chain - incomplete	1	CN=FG100E4Q16004139, OU=FortiGate, O=Fortinet, L=Sunnyvale, C=US, emailAddress=support@fortinet.com
	2	CN=support, OU=Certificate Authority, O=Fortinet, L=Sunnyvale, C=US, emailAddress=support@fortinet.com

9. Certificates

CN=bip.pkspolonus.pl

08.04.2025

07.07.2025
expires in 70 days

bip.pkspolonus.pl - 1 entry

CN=bip.pkspolonus.pl

08.04.2025

07.07.2025
expires in 70 days

bip.pkspolonus.pl - 1 entry

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	06E1BF5C29E6A3465014C59057E142CE22EE
Thumbprint:	4607913A948D5C97721DAE9AC87658484C264F1F
SHA256 / Certificate:	XXi4u9RNqi8r/XXh2Ehglw8WlYQYuEeAR0QKDJFKd+Y=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	7987e763c4da8b316fe3c8761cd23faf2a940c45f6545b1f542b1e1c43774f0a
SHA256 hex / Subject Public Key Information (SPKI):	7987e763c4da8b316fe3c8761cd23faf2a940c45f6545b1f542b1e1c43774f0a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:	http://r11.o.lencr.org
OCSP - must staple:	no
Certificate Transparency:	yes
Enhanced Key Usage:	Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)

CN=R11, O=Let's Encrypt, C=US

13.03.2024

13.03.2027
expires in 684 days

CN=R11, O=Let's Encrypt, C=US

13.03.2024

13.03.2027
expires in 684 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	008A7D3E13D62F30EF2386BD29076B34F8
Thumbprint:	696DB3AF0DFFC17E65C6A20D925C5A7BD24DEC7E
SHA256 / Certificate:	WR6c5shj06B56fq+FHjHM5omshJp3eeVIRNhAkrjGkQ=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	6ddac18698f7f1f7e1c69b9bce420d974ac6f94ca8b2c761701623f99c767dc7
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:	Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3689 days

CN=ISRG Root X1, O=Internet Security Research Group, C=US

04.06.2015

04.06.2035
expires in 3689 days

Keyalgorithm	RSA encryption (4096 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	008210CFB0D240E3594463E0BB63828B00
Thumbprint:	CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:	lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):	96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):	0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

E=support@fortinet.com, CN=FG100E4Q16004139, OU=FortiGate, O=Fortinet, L=Sunnyvale, S=California, C=US

12.12.2016

19.01.2038
expires in 4649 days

E=support@fortinet.com, CN=FG100E4Q16004139, OU=FortiGate, O=Fortinet, L=Sunnyvale, S=California, C=US

12.12.2016

19.01.2038
expires in 4649 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	3BBE7C
Thumbprint:	FD5DC31A51C737F936B09FA802182DF0F08BCB1C
SHA256 / Certificate:	jsbbde47aCYGAR8D5BVbm8mwFv7HWAFi2Ob5WjtoI/k=
SHA256 hex / Cert (DANE * 0 1):	e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):	d91f66ec52b4769d929b5a4ed54126166b3eba66f2d1adb74f42079c8b32d3c3
SHA256 hex / Subject Public Key Information (SPKI):	d91f66ec52b4769d929b5a4ed54126166b3eba66f2d1adb74f42079c8b32d3c3 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

E=support@fortinet.com, CN=support, OU=Certificate Authority, O=Fortinet, L=Sunnyvale, S=California, C=US

17.07.2015

19.01.2038
expires in 4649 days

E=support@fortinet.com, CN=support, OU=Certificate Authority, O=Fortinet, L=Sunnyvale, S=California, C=US

17.07.2015

19.01.2038
expires in 4649 days

Keyalgorithm	RSA encryption (2048 bit)
Signatur:	SHA256 With RSA-Encryption
Serial Number:	00DAF636B443D4A58B
Thumbprint:	16B7611982622CB83C14D706377A150E7D553A99
SHA256 / Certificate:	Mq0eW8THwnNWYbkoIF6d0VO0s9El+85vUls8joEZ0MA=
SHA256 hex / Cert (DANE * 0 1):	32ad1e5bc4c7c2735661b928205e9dd153b4b3d125fbce6f525b3c8e8119d0c0
SHA256 hex / PublicKey (DANE * 1 1):	2a7ebd1822a0f4e65790c03c4e603e7d66b7a37e100cc2a3b9950a3b07d77842
SHA256 hex / Subject Public Key Information (SPKI):	2a7ebd1822a0f4e65790c03c4e603e7d66b7a37e100cc2a3b9950a3b07d77842
SPKI checked via https://v1.pwnedkeys.com/spki-hash:	Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:	no
Certificate Transparency:	no
Enhanced Key Usage:

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

No CertSpotter - CT-Log entries found

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

11. Html-Content - Entries

Summary

							Subresource Integrity (SRI)
Domainname	HtmlElement	rel/property	∑	∑ size	∑ problems	∑ int.	∑ ext.	∑ Origin poss.	∑ SRI ParseErrors	∑ SRI valid	∑ SRI missing
https://bip.pkspolonus.pl/	a		18		0			0	0	0
	form		1	3,755 Bytes	0	1	0	0	0	0
	link	stylesheet	3	30,502 Bytes	0	3	0	0	0	0
	link	other	1	1,150 Bytes	1	1	0	0	0	0
	meta	other	4		0			0	0	0
	script		6	151,054 Bytes	6	6	0	0	0	0
https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	a		18		0			0	0	0
	form		1	3,755 Bytes	0	1	0	0	0	0
	link	stylesheet	3	30,502 Bytes	0	3	0	0	0	0
	link	other	1	1,150 Bytes	1	1	0	0	0	0
	meta	other	4		0			0	0	0
	script		6	151,054 Bytes	6	6	0	0	0	0

Details (currently limited to 500 rows - some problems with spam users)

Domainname	Html-Element	name/equiv/ property/rel	href/src/content	HttpStatus	∑	Status
https://bip.pkspolonus.pl/	a		/index.php?option=com_content&view=article&id=14&Itemid=147				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=2&Itemid=102				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=29&Itemid=137				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=3&Itemid=116				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=30&Itemid=101				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=30&Itemid=142				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=32&Itemid=143				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=33&Itemid=144				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=34&Itemid=145				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=36&Itemid=146				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=39&Itemid=148				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=40&Itemid=124				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=41&Itemid=149				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=42&Itemid=120				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=7&Itemid=114				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=9&Itemid=119				1	ok
								ok


	a		http://pkspolonus.pl				1	ok
								ok


	a		https://pkspolonus.pl				1	ok
								ok


	form	post	/index.php		200		1	ok
				text/html; charset=utf-8 X-Content-Type-Options nosniff found				ok
				3755 Bytes

	link	shortcut icon	/templates/meembo-blue/favicon.ico		200		1	Problems with Content-Type - Header - see details
				image/x-icon X-Content-Type-Options nosniff found		This combination of Media Type "image" and MediaSubType "x-icon" was never defined. Use "image/vnd.microsoft.icon" instead. See https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	No Cache-Control header			No Compression - 1150 Bytes
	ETag: "5ab503ab-47e"

	link	stylesheet	/templates/meembo-blue/css/template.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	No Cache-Control - header			Compression required: 26904 Bytes
	ETag: "67ea8332-6918"
	local SRI possible, possible hash-values: sha256-OqJb/vgCUjQ+sicwcCf6klR5q38SOlzf68nL7eezwVc= sha384-AAV9tZWKG/Yh/wtvAzCe+oh8pXxcjXEAlr0Z4HIBYXGhLKYaAfeXGgVsZbjt13kw sha512-FWi9jd1Odux5EQKra4r79fdxrA5t++Rasf/J69ItZrchIBf0JNet64GcVZ4l2gzNzn2hhA90MNhUC1WNwPs+1A== <link rel="stylesheet" href="/templates/meembo-blue/css/template.css" crossorigin="anonymous" integrity="sha256-OqJb/vgCUjQ+sicwcCf6klR5q38SOlzf68nL7eezwVc=" />

	link	stylesheet	/templates/system/css/general.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	No Cache-Control - header			Compression required: 2717 Bytes
	ETag: "64a97158-a9d"
	local SRI possible, possible hash-values: sha256-pP5p0xzMurXo9aeLFCB1ZhpSR0ZOtqgotxrWwPvQK+s= sha384-zMsyNCRuG40sPANcU0+36JL6Ci7U5ryjLOqJPIr02Fks4Lw2tZQTQjOnZFOhw1la sha512-J9/BshH0w490mtk8fTnUmEmtvhGlXFu5Pcjdr+d8fXOjY54ayZVxEbVPRzDHOOABcvFt9zaPrAyXXmxhwtFFIw== <link rel="stylesheet" href="/templates/system/css/general.css" crossorigin="anonymous" integrity="sha256-pP5p0xzMurXo9aeLFCB1ZhpSR0ZOtqgotxrWwPvQK+s=" />

	link	stylesheet	/templates/system/css/system.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	No Cache-Control - header			881 Bytes
	ETag: "64a97158-371"
	local SRI possible, possible hash-values: sha256-jLjM+/7jRaR1ltbFjtFMz3II7hdGJDAF8v6ee2YK6Qw= sha384-tU/WmtpH775TV+y+jEjbYz9a2bGFMEI9lfoqMkR89PQFpHi5GiDXN5TWWEHlThE8 sha512-rrLA3upYdai+Eo3ON/RW7uuCRDxiVZ7IVHMJsUyZ+KiPMxszKMz/OskZWYzXTodmI2MDrAJAINayWC81A3Jm2A== <link rel="stylesheet" href="/templates/system/css/system.css" crossorigin="anonymous" integrity="sha256-jLjM+/7jRaR1ltbFjtFMz3II7hdGJDAF8v6ee2YK6Qw=" />

	meta		pl-PL				1	ok
								ok


	meta	content-type	text/html; charset=utf-8				1	ok
								ok


	meta	author	Administrator				1	ok
								ok


	meta	generator	Joomla! - Open Source Content Management				1	ok
								ok


	script	src	/media/jui/js/jquery.min.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			Compression required: 97646 Bytes
	ETag: "64a97158-17d6e"
	local SRI possible, possible hash-values: sha256-BdMcdg3z5vDGTj2hzSmeX3PfUcl0xlKKYNBoWFm7wbo= sha384-6aEjlrdFqcT5RuNGstCPLa/m8RyLJoGeuszYbw0Ha207UwDhuQJ1hI+jPU05xCno sha512-93RNFwX5dAunHd2uwCcy9T/bBcIHgD+wxpLkiDHkZFGB0kYFQGynuQ/rG6chX2Di7jZurn9JssoWx05Hy1JIXA== <script src="/media/jui/js/jquery.min.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-BdMcdg3z5vDGTj2hzSmeX3PfUcl0xlKKYNBoWFm7wbo=" />

	script	src	/media/jui/js/jquery-migrate.min.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			Compression required: 10056 Bytes
	ETag: "64a97158-2748"
	local SRI possible, possible hash-values: sha256-SOuLUArmo4YXtXONKz+uxIGSKneCJG4x0nVcA0pFzV0= sha384-uQPAXWjjvZGmVjKnobPRQOCEJ0rkCNRXW1GBUsJkjw1w0K7TxLH6Z3zMX7wtx+Lf sha512-t0ovA8ZOiDuaNN5DaQQpMn37SqIwp6avyoFQoW49hOmEYSRf8mTCY2jZkEVizDT+IZ9x+VHTZPpcaMA5t2d2zQ== <script src="/media/jui/js/jquery-migrate.min.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-SOuLUArmo4YXtXONKz+uxIGSKneCJG4x0nVcA0pFzV0=" />

	script	src	/media/jui/js/jquery-noconflict.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			21 Bytes
	ETag: "64a97158-15"
	local SRI possible, possible hash-values: sha256-W2z05u2gL3yQtgs8MkE8CFGRX4+AomipE7kpKQhRMqY= sha384-9I0+FLXzv82biEBGb77HdZ1XpgINL6F1uefAJQo15tkpNppEHakTRz8yV0//fZq3 sha512-3MIRfkKFnVEBcEe0aKmfZddNRawuhq4cxWBeOQQf8hZOVidW2TqJ+h9xy9Mx+VizUcWv6VKkelYBIOCA1jvWIw== <script src="/media/jui/js/jquery-noconflict.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-W2z05u2gL3yQtgs8MkE8CFGRX4+AomipE7kpKQhRMqY=" />

	script	src	/media/plg_system_j3accessibility/dist/accessibility.min.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			Compression required: 42453 Bytes
	ETag: "67c704bc-a5d5"
	local SRI possible, possible hash-values: sha256-Cy2PcrJRPaEJpSDuqDntd6CXWadq9ti5DhTDPdpw804= sha384-VftvKko/jv209r4YzpDqzsm8pmLy/mL2mfgnxHK7avBDMxDQyTZYwXuRVuZShmur sha512-EaoqBvfqWSpdEPAki4f+K6kl3Vsu+KPWE7bT8NCC9ynXaMKTfcz7iNccY2rmbccdcUYoRUpAgC8SC01ZFG2h/w== <script src="/media/plg_system_j3accessibility/dist/accessibility.min.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-Cy2PcrJRPaEJpSDuqDntd6CXWadq9ti5DhTDPdpw804=" />

	script	src	/media/system/js/caption.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			491 Bytes
	ETag: "64a97158-1eb"
	local SRI possible, possible hash-values: sha256-IPfIOrnf3B6I9MP6/AcSSSIAq3OPswZgUmutnctygtw= sha384-B+Eu81aCrgkEFJQp/S6j4iBRkGqIlM9I0krxIAymRfZCS4M7bXFOJOWUcjhiILAC sha512-1tmt1QQHO+TW+6+tPs8PXFRWHQoqFJZ1lwnNs1Nge06PCK1uiF/WuIclks01WMcCadLe1xCwK83ppbpOUdFO8g== <script src="/media/system/js/caption.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-IPfIOrnf3B6I9MP6/AcSSSIAq3OPswZgUmutnctygtw=" />

	script	src	/templates/meembo-blue/js/sfhover.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			387 Bytes
	ETag: "5252a2f2-183"
	local SRI possible, possible hash-values: sha256-00MsBbHiZms4lrIyqlMAgJNSMXC0JmE3bYkVePXzcbw= sha384-IWMdknLj5Aeub//7sTyRLa8wgb9UFshPKGztOT4T05oZ8vJ5fQr1c0zDJuDvxj4k sha512-g2vvqUOchG+HwGUDdMxCuvT/7EQjXll7ZnYYFpqOZTzH/I08HA32u8E9+9ibox+O5FjsgWaHwFXf5YSHlOPVNA== <script src="/templates/meembo-blue/js/sfhover.js" crossorigin="anonymous" integrity="sha256-00MsBbHiZms4lrIyqlMAgJNSMXC0JmE3bYkVePXzcbw=" />

https://bip.pkspolonus.pl/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de	a		/index.php?option=com_content&view=article&id=14&Itemid=147				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=2&Itemid=102				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=29&Itemid=137				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=3&Itemid=116				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=30&Itemid=101				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=30&Itemid=142				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=32&Itemid=143				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=33&Itemid=144				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=34&Itemid=145				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=36&Itemid=146				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=39&Itemid=148				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=40&Itemid=124				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=41&Itemid=149				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=42&Itemid=120				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=7&Itemid=114				1	ok
								ok


	a		/index.php?option=com_content&view=article&id=9&Itemid=119				1	ok
								ok


	a		http://pkspolonus.pl				1	ok
								ok


	a		https://pkspolonus.pl				1	ok
								ok


	form	post	/index.php		200		1	ok
				text/html; charset=utf-8 X-Content-Type-Options nosniff found				ok
				3755 Bytes

	link	shortcut icon	/templates/meembo-blue/favicon.ico		200		1	Problems with Content-Type - Header - see details
				image/x-icon X-Content-Type-Options nosniff found		This combination of Media Type "image" and MediaSubType "x-icon" was never defined. Use "image/vnd.microsoft.icon" instead. See https://www.iana.org/assignments/media-types/media-types.xhtml		Problems with Content-Type - Header - see details
	No Cache-Control header			No Compression - 1150 Bytes
	ETag: "5ab503ab-47e"

	link	stylesheet	/templates/meembo-blue/css/template.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	No Cache-Control - header			Compression required: 26904 Bytes
	ETag: "67ea8332-6918"
	local SRI possible, possible hash-values: sha256-OqJb/vgCUjQ+sicwcCf6klR5q38SOlzf68nL7eezwVc= sha384-AAV9tZWKG/Yh/wtvAzCe+oh8pXxcjXEAlr0Z4HIBYXGhLKYaAfeXGgVsZbjt13kw sha512-FWi9jd1Odux5EQKra4r79fdxrA5t++Rasf/J69ItZrchIBf0JNet64GcVZ4l2gzNzn2hhA90MNhUC1WNwPs+1A== <link rel="stylesheet" href="/templates/meembo-blue/css/template.css" crossorigin="anonymous" integrity="sha256-OqJb/vgCUjQ+sicwcCf6klR5q38SOlzf68nL7eezwVc=" />

	link	stylesheet	/templates/system/css/general.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	No Cache-Control - header			Compression required: 2717 Bytes
	ETag: "64a97158-a9d"
	local SRI possible, possible hash-values: sha256-pP5p0xzMurXo9aeLFCB1ZhpSR0ZOtqgotxrWwPvQK+s= sha384-zMsyNCRuG40sPANcU0+36JL6Ci7U5ryjLOqJPIr02Fks4Lw2tZQTQjOnZFOhw1la sha512-J9/BshH0w490mtk8fTnUmEmtvhGlXFu5Pcjdr+d8fXOjY54ayZVxEbVPRzDHOOABcvFt9zaPrAyXXmxhwtFFIw== <link rel="stylesheet" href="/templates/system/css/general.css" crossorigin="anonymous" integrity="sha256-pP5p0xzMurXo9aeLFCB1ZhpSR0ZOtqgotxrWwPvQK+s=" />

	link	stylesheet	/templates/system/css/system.css		200		1	ok
				text/css X-Content-Type-Options nosniff found				ok
	No Cache-Control - header			881 Bytes
	ETag: "64a97158-371"
	local SRI possible, possible hash-values: sha256-jLjM+/7jRaR1ltbFjtFMz3II7hdGJDAF8v6ee2YK6Qw= sha384-tU/WmtpH775TV+y+jEjbYz9a2bGFMEI9lfoqMkR89PQFpHi5GiDXN5TWWEHlThE8 sha512-rrLA3upYdai+Eo3ON/RW7uuCRDxiVZ7IVHMJsUyZ+KiPMxszKMz/OskZWYzXTodmI2MDrAJAINayWC81A3Jm2A== <link rel="stylesheet" href="/templates/system/css/system.css" crossorigin="anonymous" integrity="sha256-jLjM+/7jRaR1ltbFjtFMz3II7hdGJDAF8v6ee2YK6Qw=" />

	meta		pl-PL				1	ok
								ok


	meta	content-type	text/html; charset=utf-8				1	ok
								ok


	meta	author	Administrator				1	ok
								ok


	meta	generator	Joomla! - Open Source Content Management				1	ok
								ok


	script	src	/media/jui/js/jquery.min.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			Compression required: 97646 Bytes
	ETag: "64a97158-17d6e"
	local SRI possible, possible hash-values: sha256-BdMcdg3z5vDGTj2hzSmeX3PfUcl0xlKKYNBoWFm7wbo= sha384-6aEjlrdFqcT5RuNGstCPLa/m8RyLJoGeuszYbw0Ha207UwDhuQJ1hI+jPU05xCno sha512-93RNFwX5dAunHd2uwCcy9T/bBcIHgD+wxpLkiDHkZFGB0kYFQGynuQ/rG6chX2Di7jZurn9JssoWx05Hy1JIXA== <script src="/media/jui/js/jquery.min.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-BdMcdg3z5vDGTj2hzSmeX3PfUcl0xlKKYNBoWFm7wbo=" />

	script	src	/media/jui/js/jquery-migrate.min.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			Compression required: 10056 Bytes
	ETag: "64a97158-2748"
	local SRI possible, possible hash-values: sha256-SOuLUArmo4YXtXONKz+uxIGSKneCJG4x0nVcA0pFzV0= sha384-uQPAXWjjvZGmVjKnobPRQOCEJ0rkCNRXW1GBUsJkjw1w0K7TxLH6Z3zMX7wtx+Lf sha512-t0ovA8ZOiDuaNN5DaQQpMn37SqIwp6avyoFQoW49hOmEYSRf8mTCY2jZkEVizDT+IZ9x+VHTZPpcaMA5t2d2zQ== <script src="/media/jui/js/jquery-migrate.min.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-SOuLUArmo4YXtXONKz+uxIGSKneCJG4x0nVcA0pFzV0=" />

	script	src	/media/jui/js/jquery-noconflict.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			21 Bytes
	ETag: "64a97158-15"
	local SRI possible, possible hash-values: sha256-W2z05u2gL3yQtgs8MkE8CFGRX4+AomipE7kpKQhRMqY= sha384-9I0+FLXzv82biEBGb77HdZ1XpgINL6F1uefAJQo15tkpNppEHakTRz8yV0//fZq3 sha512-3MIRfkKFnVEBcEe0aKmfZddNRawuhq4cxWBeOQQf8hZOVidW2TqJ+h9xy9Mx+VizUcWv6VKkelYBIOCA1jvWIw== <script src="/media/jui/js/jquery-noconflict.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-W2z05u2gL3yQtgs8MkE8CFGRX4+AomipE7kpKQhRMqY=" />

	script	src	/media/plg_system_j3accessibility/dist/accessibility.min.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			Compression required: 42453 Bytes
	ETag: "67c704bc-a5d5"
	local SRI possible, possible hash-values: sha256-Cy2PcrJRPaEJpSDuqDntd6CXWadq9ti5DhTDPdpw804= sha384-VftvKko/jv209r4YzpDqzsm8pmLy/mL2mfgnxHK7avBDMxDQyTZYwXuRVuZShmur sha512-EaoqBvfqWSpdEPAki4f+K6kl3Vsu+KPWE7bT8NCC9ynXaMKTfcz7iNccY2rmbccdcUYoRUpAgC8SC01ZFG2h/w== <script src="/media/plg_system_j3accessibility/dist/accessibility.min.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-Cy2PcrJRPaEJpSDuqDntd6CXWadq9ti5DhTDPdpw804=" />

	script	src	/media/system/js/caption.js?1851ae406c23e55d856c2a1f5147f6d0		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			491 Bytes
	ETag: "64a97158-1eb"
	local SRI possible, possible hash-values: sha256-IPfIOrnf3B6I9MP6/AcSSSIAq3OPswZgUmutnctygtw= sha384-B+Eu81aCrgkEFJQp/S6j4iBRkGqIlM9I0krxIAymRfZCS4M7bXFOJOWUcjhiILAC sha512-1tmt1QQHO+TW+6+tPs8PXFRWHQoqFJZ1lwnNs1Nge06PCK1uiF/WuIclks01WMcCadLe1xCwK83ppbpOUdFO8g== <script src="/media/system/js/caption.js?1851ae406c23e55d856c2a1f5147f6d0" crossorigin="anonymous" integrity="sha256-IPfIOrnf3B6I9MP6/AcSSSIAq3OPswZgUmutnctygtw=" />

	script	src	/templates/meembo-blue/js/sfhover.js		200		1	Problems with Content-Type - Header - see details
	Missing defer / async attribute.			application/javascript X-Content-Type-Options nosniff found		This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.		Problems with Content-Type - Header - see details
	No Cache-Control - header			387 Bytes
	ETag: "5252a2f2-183"
	local SRI possible, possible hash-values: sha256-00MsBbHiZms4lrIyqlMAgJNSMXC0JmE3bYkVePXzcbw= sha384-IWMdknLj5Aeub//7sTyRLa8wgb9UFshPKGztOT4T05oZ8vJ5fQr1c0zDJuDvxj4k sha512-g2vvqUOchG+HwGUDdMxCuvT/7EQjXll7ZnYYFpqOZTzH/I08HA32u8E9+9ibox+O5FjsgWaHwFXf5YSHlOPVNA== <script src="/templates/meembo-blue/js/sfhover.js" crossorigin="anonymous" integrity="sha256-00MsBbHiZms4lrIyqlMAgJNSMXC0JmE3bYkVePXzcbw=" />

12. Html-Parsing via https://validator.w3.org/nu/

	Type	Message	num found
Url used (first standard-https-result with http status 200): https://bip.pkspolonus.pl/

Summary
	Good: No non-document-errors
	1 errors
	8 warnings
1.	error	Almost standards mode doctype. Expected `<!DOCTYPE html>`.	1
2.	warning	The `type` attribute is unnecessary for JavaScript resources.	7
3.	warning	The `type` attribute for the `style` element is not needed and should be omitted.	1
Details
	Type	Message + Sample
1	error	Almost standards mode doctype. Expected `<!DOCTYPE html>`.
		From line 1, column 1 to line 1, column 121
		<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html
2	warning	The `type` attribute for the `style` element is not needed and should be omitted.
		From line 9, column 2 to line 9, column 24
		icon" /> <style type="text/css"> div.m
3	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 12, column 2 to line 12, column 99
		</style> <script src="/media/jui/js/jquery.min.js?1851ae406c23e55d856c2a1f5147f6d0" type="text/javascript"></scri
4	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 13, column 2 to line 13, column 106
		/script> <script src="/media/jui/js/jquery-noconflict.js?1851ae406c23e55d856c2a1f5147f6d0" type="text/javascript"></scri
5	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 14, column 2 to line 14, column 107
		/script> <script src="/media/jui/js/jquery-migrate.min.js?1851ae406c23e55d856c2a1f5147f6d0" type="text/javascript"></scri
6	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 15, column 2 to line 15, column 99
		/script> <script src="/media/system/js/caption.js?1851ae406c23e55d856c2a1f5147f6d0" type="text/javascript"></scri
7	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 18, column 2 to line 18, column 32
		/script> <script type="text/javascript"> jQuer
8	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 36, column 2 to line 36, column 75
		/css" /> <script type="text/javascript" src="/templates/meembo-blue/js/sfhover.js"></scri
9	warning	The `type` attribute is unnecessary for JavaScript resources.
		From line 156, column 533 to line 156, column 563
		pt.</span><script type='text/javascript'> d

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: dns1.tld.pl, dns2.tld.pl, dns3.tld.pl

QNr.	Domain	Type	NS used
1	pl	NS	c.root-servers.net (2001:500:2::c)
	Answer: a-dns.pl, b-dns.pl, d-dns.pl, f-dns.pl, h-dns.pl, j-dns.pl
2	dns1.tld.pl	NS	a-dns.pl (2001:7f9::53)
	Answer: ns1.tld.pl, ns2.tld.pl
	Answer: ns1.tld.pl 94.152.254.101
	Answer: ns2.tld.pl 94.152.255.101
3	dns2.tld.pl	NS	a-dns.pl (2001:7f9::53)
	Answer: ns1.tld.pl, ns2.tld.pl
	Answer: ns1.tld.pl 94.152.254.101
	Answer: ns2.tld.pl 94.152.255.101
4	dns3.tld.pl	NS	a-dns.pl (2001:7f9::53)
	Answer: ns1.tld.pl, ns2.tld.pl
	Answer: ns1.tld.pl 94.152.254.101
	Answer: ns2.tld.pl 94.152.255.101
5	dns1.tld.pl: 94.152.255.104	A	ns1.tld.pl (94.152.254.101)
6	dns1.tld.pl: No AAAA record found	AAAA	ns1.tld.pl (94.152.254.101)
7	dns2.tld.pl: 94.152.254.104	A	ns1.tld.pl (94.152.254.101)
8	dns2.tld.pl: No AAAA record found	AAAA	ns1.tld.pl (94.152.254.101)
9	dns3.tld.pl: 94.152.254.154	A	ns1.tld.pl (94.152.254.101)
10	dns3.tld.pl: No AAAA record found	AAAA	ns1.tld.pl (94.152.254.101)

14. CAA - Entries

Domainname	Value	∑ Queries
www.mhm.polonuspks.pl	no CAA entry found	1
mhm.polonuspks.pl	no CAA entry found	1
polonuspks.pl	no CAA entry found	1
pl	no CAA entry found	1

15. TXT - Entries

Domainname	TXT Entry	Status	∑ Queries
polonuspks.pl	v=spf1 a mx ip4:77.79.220.2 ~all	ok	1
mhm.polonuspks.pl		ok	1
www.mhm.polonuspks.pl		ok	1
_acme-challenge.mhm.polonuspks.pl		missing entry or wrong length	1
_acme-challenge.www.mhm.polonuspks.pl		missing entry or wrong length	1
_acme-challenge.mhm.polonuspks.pl.polonuspks.pl		perhaps wrong	1
_acme-challenge.mhm.polonuspks.pl.mhm.polonuspks.pl		perhaps wrong	1
_acme-challenge.www.mhm.polonuspks.pl.mhm.polonuspks.pl		perhaps wrong	1
_acme-challenge.www.mhm.polonuspks.pl.www.mhm.polonuspks.pl		perhaps wrong	1

16. DomainService - Entries

No DomainServiceEntries entries found

17. Cipher Suites

Summary
Domain	IP	Port	num Ciphers	time	Std.Protocol	Forward Secrecy
mhm.polonuspks.pl	77.79.220.2	443	3 Ciphers	28.56 sec		0 without, 3 FS	100.00 %
mhm.polonuspks.pl	77.79.220.2	8443	6 Ciphers	36.52 sec	Plesk Administration (https)	2 without, 4 FS	66.67 %
www.mhm.polonuspks.pl	77.79.220.2	443	3 Ciphers	28.69 sec		0 without, 3 FS	100.00 %
www.mhm.polonuspks.pl	77.79.220.2	8443	6 Ciphers	38.31 sec	Plesk Administration (https)	2 without, 4 FS	66.67 %
Complete		4	18 Ciphers 4.50 Ciphers/Check	132.09 sec	33.02 sec/Check	4 without, 14 FS	77.78 %

Details
Domain	IP	Port	Cipher (OpenSsl / IANA)
mhm.polonuspks.pl	77.79.220.2	443	ECDHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xA8	FS
3 Ciphers, 28.56 sec			TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			ECDH		RSA	CHACHA20/POLY1305(256)	AEAD
			ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
		8443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
6 Ciphers, 36.52 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			AES256-SHA256		(Weak)	TLSv1.2	0x00,0x3D	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA256
			RSA		RSA	AES(256)	SHA256
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
			AES128-SHA256		(Weak)	TLSv1.2	0x00,0x3C	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA256
			RSA		RSA	AES(128)	SHA256
www.mhm.polonuspks.pl	77.79.220.2	443	ECDHE-RSA-CHACHA20-POLY1305		(Secure)	TLSv1.2	0xCC,0xA8	FS
3 Ciphers, 28.69 sec			TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
			ECDH		RSA	CHACHA20/POLY1305(256)	AEAD
			ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
		8443	ECDHE-RSA-AES256-GCM-SHA384		(Secure)	TLSv1.2	0xC0,0x30	FS
6 Ciphers, 38.31 sec			TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
			ECDH		RSA	AESGCM(256)	AEAD
			ECDHE-RSA-AES128-GCM-SHA256		(Secure)	TLSv1.2	0xC0,0x2F	FS
			TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
			ECDH		RSA	AESGCM(128)	AEAD
			ECDHE-RSA-AES256-SHA384		(Weak)	TLSv1.2	0xC0,0x28	FS
			TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
			ECDH		RSA	AES(256)	SHA384
			AES256-SHA256		(Weak)	TLSv1.2	0x00,0x3D	No FS
			TLS_RSA_WITH_AES_256_CBC_SHA256
			RSA		RSA	AES(256)	SHA256
			ECDHE-RSA-AES128-SHA256		(Weak)	TLSv1.2	0xC0,0x27	FS
			TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
			ECDH		RSA	AES(128)	SHA256
			AES128-SHA256		(Weak)	TLSv1.2	0x00,0x3C	No FS
			TLS_RSA_WITH_AES_128_CBC_SHA256
			RSA		RSA	AES(128)	SHA256

18. Portchecks

Domain	IP	Port	Description	Result	Answer
mhm.polonuspks.pl	77.79.220.2	21	FTP

mhm.polonuspks.pl	77.79.220.2	21	FTP
mhm.polonuspks.pl	77.79.220.2	22	SSH

mhm.polonuspks.pl	77.79.220.2	22	SSH
mhm.polonuspks.pl	77.79.220.2	25	SMTP

mhm.polonuspks.pl	77.79.220.2	25	SMTP
mhm.polonuspks.pl	77.79.220.2	53	DNS

mhm.polonuspks.pl	77.79.220.2	53	DNS
mhm.polonuspks.pl	77.79.220.2	110	POP3

mhm.polonuspks.pl	77.79.220.2	110	POP3
mhm.polonuspks.pl	77.79.220.2	143	IMAP

mhm.polonuspks.pl	77.79.220.2	143	IMAP
mhm.polonuspks.pl	77.79.220.2	465	SMTP (encrypted)

mhm.polonuspks.pl	77.79.220.2	465	SMTP (encrypted)
mhm.polonuspks.pl	77.79.220.2	587	SMTP (encrypted, submission)

mhm.polonuspks.pl	77.79.220.2	587	SMTP (encrypted, submission)
mhm.polonuspks.pl	77.79.220.2	993	IMAP (encrypted)

mhm.polonuspks.pl	77.79.220.2	993	IMAP (encrypted)
mhm.polonuspks.pl	77.79.220.2	995	POP3 (encrypted)

mhm.polonuspks.pl	77.79.220.2	995	POP3 (encrypted)
mhm.polonuspks.pl	77.79.220.2	1433	MS SQL

mhm.polonuspks.pl	77.79.220.2	1433	MS SQL
mhm.polonuspks.pl	77.79.220.2	2082	cPanel (http)

mhm.polonuspks.pl	77.79.220.2	2082	cPanel (http)
mhm.polonuspks.pl	77.79.220.2	2083	cPanel (https)

mhm.polonuspks.pl	77.79.220.2	2083	cPanel (https)
mhm.polonuspks.pl	77.79.220.2	2086	WHM (http)

mhm.polonuspks.pl	77.79.220.2	2086	WHM (http)
mhm.polonuspks.pl	77.79.220.2	2087	WHM (https)

mhm.polonuspks.pl	77.79.220.2	2087	WHM (https)
mhm.polonuspks.pl	77.79.220.2	2089	cPanel Licensing

mhm.polonuspks.pl	77.79.220.2	2089	cPanel Licensing
mhm.polonuspks.pl	77.79.220.2	2095	cPanel Webmail (http)

mhm.polonuspks.pl	77.79.220.2	2095	cPanel Webmail (http)
mhm.polonuspks.pl	77.79.220.2	2096	cPanel Webmail (https)

mhm.polonuspks.pl	77.79.220.2	2096	cPanel Webmail (https)
mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (http)

mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (http)
mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (https)

mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (https)
mhm.polonuspks.pl	77.79.220.2	3306	mySql

mhm.polonuspks.pl	77.79.220.2	3306	mySql
mhm.polonuspks.pl	77.79.220.2	5224	Plesk Licensing

mhm.polonuspks.pl	77.79.220.2	5224	Plesk Licensing
mhm.polonuspks.pl	77.79.220.2	5432	PostgreSQL

mhm.polonuspks.pl	77.79.220.2	5432	PostgreSQL
mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (http)

mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (http)
mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (https)

mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (https)
mhm.polonuspks.pl	77.79.220.2	8083	VestaCP http

mhm.polonuspks.pl	77.79.220.2	8083	VestaCP http
mhm.polonuspks.pl	77.79.220.2	8083	VestaCP https

mhm.polonuspks.pl	77.79.220.2	8083	VestaCP https
mhm.polonuspks.pl	77.79.220.2	8443	Plesk Administration (https)	open
https://77.79.220.2:8443/ Http-Status: 200		Certificate is invalid
mhm.polonuspks.pl	77.79.220.2	8443	Plesk Administration (https)	open	https://77.79.220.2:8443/ Http-Status: 200	Certificate is invalid
mhm.polonuspks.pl	77.79.220.2	8447	Plesk Installer + Updates

mhm.polonuspks.pl	77.79.220.2	8447	Plesk Installer + Updates
mhm.polonuspks.pl	77.79.220.2	8880	Plesk Administration (http)

mhm.polonuspks.pl	77.79.220.2	8880	Plesk Administration (http)
mhm.polonuspks.pl	77.79.220.2	10000	Webmin (http)

mhm.polonuspks.pl	77.79.220.2	10000	Webmin (http)
mhm.polonuspks.pl	77.79.220.2	10000	Webmin (https)

mhm.polonuspks.pl	77.79.220.2	10000	Webmin (https)
www.mhm.polonuspks.pl	77.79.220.2	21	FTP

www.mhm.polonuspks.pl	77.79.220.2	21	FTP
www.mhm.polonuspks.pl	77.79.220.2	22	SSH

www.mhm.polonuspks.pl	77.79.220.2	22	SSH
www.mhm.polonuspks.pl	77.79.220.2	25	SMTP

www.mhm.polonuspks.pl	77.79.220.2	25	SMTP
www.mhm.polonuspks.pl	77.79.220.2	53	DNS

www.mhm.polonuspks.pl	77.79.220.2	53	DNS
www.mhm.polonuspks.pl	77.79.220.2	110	POP3

www.mhm.polonuspks.pl	77.79.220.2	110	POP3
www.mhm.polonuspks.pl	77.79.220.2	143	IMAP

www.mhm.polonuspks.pl	77.79.220.2	143	IMAP
www.mhm.polonuspks.pl	77.79.220.2	465	SMTP (encrypted)

www.mhm.polonuspks.pl	77.79.220.2	465	SMTP (encrypted)
www.mhm.polonuspks.pl	77.79.220.2	587	SMTP (encrypted, submission)

www.mhm.polonuspks.pl	77.79.220.2	587	SMTP (encrypted, submission)
www.mhm.polonuspks.pl	77.79.220.2	993	IMAP (encrypted)

www.mhm.polonuspks.pl	77.79.220.2	993	IMAP (encrypted)
www.mhm.polonuspks.pl	77.79.220.2	995	POP3 (encrypted)

www.mhm.polonuspks.pl	77.79.220.2	995	POP3 (encrypted)
www.mhm.polonuspks.pl	77.79.220.2	1433	MS SQL

www.mhm.polonuspks.pl	77.79.220.2	1433	MS SQL
www.mhm.polonuspks.pl	77.79.220.2	2082	cPanel (http)

www.mhm.polonuspks.pl	77.79.220.2	2082	cPanel (http)
www.mhm.polonuspks.pl	77.79.220.2	2083	cPanel (https)

www.mhm.polonuspks.pl	77.79.220.2	2083	cPanel (https)
www.mhm.polonuspks.pl	77.79.220.2	2086	WHM (http)

www.mhm.polonuspks.pl	77.79.220.2	2086	WHM (http)
www.mhm.polonuspks.pl	77.79.220.2	2087	WHM (https)

www.mhm.polonuspks.pl	77.79.220.2	2087	WHM (https)
www.mhm.polonuspks.pl	77.79.220.2	2089	cPanel Licensing

www.mhm.polonuspks.pl	77.79.220.2	2089	cPanel Licensing
www.mhm.polonuspks.pl	77.79.220.2	2095	cPanel Webmail (http)

www.mhm.polonuspks.pl	77.79.220.2	2095	cPanel Webmail (http)
www.mhm.polonuspks.pl	77.79.220.2	2096	cPanel Webmail (https)

www.mhm.polonuspks.pl	77.79.220.2	2096	cPanel Webmail (https)
www.mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (http)

www.mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (http)
www.mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (https)

www.mhm.polonuspks.pl	77.79.220.2	2222	DirectAdmin (https)
www.mhm.polonuspks.pl	77.79.220.2	3306	mySql

www.mhm.polonuspks.pl	77.79.220.2	3306	mySql
www.mhm.polonuspks.pl	77.79.220.2	5224	Plesk Licensing

www.mhm.polonuspks.pl	77.79.220.2	5224	Plesk Licensing
www.mhm.polonuspks.pl	77.79.220.2	5432	PostgreSQL

www.mhm.polonuspks.pl	77.79.220.2	5432	PostgreSQL
www.mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (http)

www.mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (http)
www.mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (https)

www.mhm.polonuspks.pl	77.79.220.2	8080	Ookla Speedtest (https)
www.mhm.polonuspks.pl	77.79.220.2	8083	VestaCP http

www.mhm.polonuspks.pl	77.79.220.2	8083	VestaCP http
www.mhm.polonuspks.pl	77.79.220.2	8083	VestaCP https

www.mhm.polonuspks.pl	77.79.220.2	8083	VestaCP https
www.mhm.polonuspks.pl	77.79.220.2	8443	Plesk Administration (https)	open
https://77.79.220.2:8443/ Http-Status: 200		Certificate is invalid
www.mhm.polonuspks.pl	77.79.220.2	8443	Plesk Administration (https)	open	https://77.79.220.2:8443/ Http-Status: 200	Certificate is invalid
www.mhm.polonuspks.pl	77.79.220.2	8447	Plesk Installer + Updates

www.mhm.polonuspks.pl	77.79.220.2	8447	Plesk Installer + Updates
www.mhm.polonuspks.pl	77.79.220.2	8880	Plesk Administration (http)

www.mhm.polonuspks.pl	77.79.220.2	8880	Plesk Administration (http)
www.mhm.polonuspks.pl	77.79.220.2	10000	Webmin (http)

www.mhm.polonuspks.pl	77.79.220.2	10000	Webmin (http)
www.mhm.polonuspks.pl	77.79.220.2	10000	Webmin (https)

www.mhm.polonuspks.pl	77.79.220.2	10000	Webmin (https)

Permalink: https://check-your-website.server-daten.de/?i=2805576b-7521-4fd2-997d-fb6fe77019d6

Last Result: https://check-your-website.server-daten.de/?q=mhm.polonuspks.pl - 2025-04-15 11:06:24

Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=mhm.polonuspks.pl" target="_blank">Check this Site: mhm.polonuspks.pl</a>

Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

QR-Code of this page - https://check-your-website.server-daten.de/?d=mhm.polonuspks.pl

Check DNS, Urls + Redirects, Certificates and Content of your Website

Older results

1. IP-Addresses

2. DNSSEC

3. Name Servers

4. SOA-Entries

5. Screenshots

Mobile- and other Chrome-Checks

6. Url-Checks

7. Comments

1. General Results, most used to calculate the result

2. Header-Checks

3. DNS- and NameServer - Checks

4. Content- and Performance-critical Checks

8. Connections

9. Certificates

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

11. Html-Content - Entries

Summary

Details (currently limited to 500 rows - some problems with spam users)

12. Html-Parsing via https://validator.w3.org/nu/

Summary

Details

13. Nameserver - IP-Adresses

14. CAA - Entries

15. TXT - Entries

16. DomainService - Entries

17. Cipher Suites

18. Portchecks