Check DNS, Urls + Redirects, Certificates and Content of your Website


Update: 2020-03-04 - now 90 days later. All affected Letsencrypt certificates should be renewed. Time to remove that Info.




A

Top config

Checked:
01.01.2020 01:40:05


Older results

No older results found


1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
nsfw.social
A
104.27.188.212
Ashburn/Virginia/United States (US) - Cloudflare, Inc.
No Hostname found
yes
1
0

A
104.27.189.212
Ashburn/Virginia/United States (US) - Cloudflare, Inc.
No Hostname found
yes
1
0

AAAA
2606:4700:30::681b:bcd4
Ashburn/Virginia/United States (US) - Cloudflare, Inc.

yes



AAAA
2606:4700:30::681b:bdd4
Ashburn/Virginia/United States (US) - Cloudflare, Inc.

yes


www.nsfw.social
A

yes
1
0

AAAA

yes



2. DNSSEC

Zone (*)DNSSEC - Informations

Zone: (root)
(root)
1 DS RR published



Status: Valid because published



3 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 22545, Flags 256



Public Key with Algorithm 8, KeyTag 33853, Flags 256



1 RRSIG RR to validate DNSKEY RR found



Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 10.01.2020, 00:00:00, Signature-Inception: 20.12.2019, 00:00:00, KeyTag 20326, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: social
social
2 DS RR in the parent zone found



1 RRSIG RR to validate DS RR found



Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 13.01.2020, 17:00:00, Signature-Inception: 31.12.2019, 16:00:00, KeyTag 22545, Signer-Name: (root)



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 22545 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 8, KeyTag 32212, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 8, KeyTag 33873, Flags 256



2 RRSIG RR to validate DNSKEY RR found



Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 29.01.2020, 11:41:10, Signature-Inception: 30.12.2019, 10:54:02, KeyTag 32212, Signer-Name: social



Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 29.01.2020, 11:41:10, Signature-Inception: 30.12.2019, 10:54:02, KeyTag 33873, Signer-Name: social



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 32212 used to validate the DNSKEY RRSet



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 33873 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 32212, DigestType 1 and Digest "ugCI2ts45fIF7KTHHcz5dsLaz6s=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 32212, DigestType 2 and Digest "H/hJK/Dd/jwDXG4hz39TEQtBTyPwbfPQbIfGerXTOF8=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone

Zone: nsfw.social
nsfw.social
1 DS RR in the parent zone found



1 RRSIG RR to validate DS RR found



Algorithm: 8, 2 Labels, original TTL: 86400 sec, Signature-expiration: 28.01.2020, 08:03:39, Signature-Inception: 29.12.2019, 07:23:18, KeyTag 33873, Signer-Name: social



Status: Good - Algorithmus 8 and DNSKEY with KeyTag 33873 used to validate the DS RRSet in the parent zone



2 DNSKEY RR found



Public Key with Algorithm 13, KeyTag 2371, Flags 257 (SEP = Secure Entry Point)



Public Key with Algorithm 13, KeyTag 34505, Flags 256



1 RRSIG RR to validate DNSKEY RR found



Algorithm: 13, 2 Labels, original TTL: 3600 sec, Signature-expiration: 19.01.2020, 23:08:52, Signature-Inception: 20.11.2019, 23:08:52, KeyTag 2371, Signer-Name: nsfw.social



Status: Good - Algorithmus 13 and DNSKEY with KeyTag 2371 used to validate the DNSKEY RRSet



Status: Valid Chain of trust. Parent-DS with Algorithm 13, KeyTag 2371, DigestType 2 and Digest "CH9eey1bf0lWNUHn8FVFFC1SAsfn38Nu8IUwmtRSNVk=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



RRSIG Type 1, expiration 2020-01-02 01:40:13 validates the A - Result: 104.27.188.212 104.27.189.212



RRSIG Type 16, expiration 2020-01-02 01:40:13 validates the TXT - Result: v=spf1 mx -all ca3-c603de9d89a94ecd8cbd78c2e5bb4429 brave-ledger-verification=b5ab376fe9a528b71ce2ea51c2f3263598b5178a3df53d57074e04612b877d76



RRSIG Type 28, expiration 2020-01-02 01:40:13 validates the AAAA - Result: 2606:4700:0030:0000:0000:0000:681B:BCD4 2606:4700:0030:0000:0000:0000:681B:BDD4



RRSIG Type 257, expiration 2020-01-02 01:40:13 validates the CAA - Result: 5|issuecomodoca.com 5|issuedigicert.com 5|issuedigicert.com; cansignhttpexchanges=yes 5|issueletsencrypt.org 9|issuewildcomodoca.com 9|issuewilddigicert.com 9|issuewilddigicert.com; cansignhttpexchanges=yes 9|issuewildletsencrypt.org



RRSIG Type 47, expiration 2020-01-02 01:40:13 validates the NSEC RR that proves the not-existence of the CNAME RR. Owner nsfw.social, NextOwner: \000.nsfw.social.
Bitmap: A, NS, SOA, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, DNSKEY, TLSA, HIP, CDS, CDNSKEY, 61, 99, CAA



RRSIG Type 47, expiration 2020-01-02 01:40:13 validates the NSEC RR that proves the not-existence of the TLSA RR. Owner _443._tcp.nsfw.social, NextOwner: \000._443._tcp.nsfw.social.
Bitmap: RRSIG, NSEC

Zone: www.nsfw.social
www.nsfw.social
0 DS RR in the parent zone found



DS-Query in the parent zone has a valid NSEC RR as result with the domain name between the NSEC-Owner "www.nsfw.social" and the NextOwner "\000.www.nsfw.social". So the parent zone confirmes the non-existence of a DS RR.
Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



RRSIG Type 16, expiration 2020-01-02 01:40:14 validates the TXT - Result: v=spf1 -all



RRSIG Type 47, expiration 2020-01-02 01:40:14 validates the NSEC RR that proves the not-existence of the A RR. Owner www.nsfw.social, NextOwner: \000.www.nsfw.social.
Bitmap: 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



RRSIG Type 47, expiration 2020-01-02 01:40:14 validates the NSEC RR that proves the not-existence of the CNAME RR. Owner www.nsfw.social, NextOwner: \000.www.nsfw.social.
Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



RRSIG Type 47, expiration 2020-01-02 01:40:14 validates the NSEC RR that proves the not-existence of the AAAA RR. Owner www.nsfw.social, NextOwner: \000.www.nsfw.social.
Bitmap: A, 13, MX, TXT, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99, CAA



RRSIG Type 47, expiration 2020-01-02 01:40:14 validates the NSEC RR that proves the not-existence of the TLSA RR. Owner _443._tcp.www.nsfw.social, NextOwner: \000._443._tcp.www.nsfw.social.
Bitmap: RRSIG, NSEC



RRSIG Type 47, expiration 2020-01-02 01:40:14 validates the NSEC RR that proves the not-existence of the CAA RR. Owner www.nsfw.social, NextOwner: \000.www.nsfw.social.
Bitmap: A, 13, MX, TXT, AAAA, LOC, SRV, CERT, SSHFP, RRSIG, NSEC, TLSA, HIP, 61, 99


3. Name Servers

DomainNameserverNS-IP
www.nsfw.social
  alice.ns.cloudflare.com / 67m26

nsfw.social
  alice.ns.cloudflare.com / 67m24
173.245.58.60
Chicago/Illinois/United States (US) - Cloudflare, Inc.


 
2606:4700:50::adf5:3a3c
San Jose/California/United States (US) - Cloudflare, Inc.


  lakas.ns.cloudflare.com / 67m28
173.245.59.194
Chicago/Illinois/United States (US) - Cloudflare, Inc.


 
2606:4700:58::adf5:3bc2
San Jose/California/United States (US) - Cloudflare, Inc.

social
  demand.alpha.aridns.net.au / dns2.frpar1


  demand.beta.aridns.net.au / dns4.defra1


  demand.delta.aridns.net.au / dns4.frpar1


  demand.gamma.aridns.net.au / dns1.defra1


4. SOA-Entries


Domain:social
Zone-Name:
Primary:demand.alpha.aridns.net.au
Mail:hostmaster.donuts.co
Serial:1577838953
Refresh:1800
Retry:900
Expire:604800
TTL:86400
num Entries:4


Domain:nsfw.social
Zone-Name:
Primary:alice.ns.cloudflare.com
Mail:dns.cloudflare.com
Serial:2032941487
Refresh:10000
Retry:2400
Expire:604800
TTL:3600
num Entries:4


Domain:www.nsfw.social
Zone-Name:
Primary:alice.ns.cloudflare.com
Mail:dns.cloudflare.com
Serial:2032941487
Refresh:10000
Retry:2400
Expire:604800
TTL:3600
num Entries:1


5. Screenshots

Startaddress: https://nsfw.social, address used: https://nsfw.social/main/public, Screenshot created 2020-01-01 01:41:34 +00:0

Mobil (412px x 732px)

657 milliseconds

Screenshot mobile - https://nsfw.social/main/public
Mobil + Landscape (732px x 412px)

667 milliseconds

Screenshot mobile landscape - https://nsfw.social/main/public
Screen (1280px x 1680px)

926 milliseconds

Screenshot Desktop - https://nsfw.social/main/public

Mobile- and other Chrome-Checks

widthheight
visual Viewport396732
content Size3965781

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://nsfw.social/
104.27.188.212
301
https://nsfw.social/
0.050
A
Date: Wed, 01 Jan 2020 00:40:26 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:26 GMT
Location: https://nsfw.social/
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e0711ed906d125-TXL

• http://nsfw.social/
104.27.189.212
301
https://nsfw.social/
0.040
A
Date: Wed, 01 Jan 2020 00:40:26 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:26 GMT
Location: https://nsfw.social/
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e0711f3efbd115-TXL

• http://nsfw.social/
2606:4700:30::681b:bcd4
301
https://nsfw.social/
0.026
A
Date: Wed, 01 Jan 2020 00:40:26 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:26 GMT
Location: https://nsfw.social/
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e0711f8f90d115-TXL

• http://nsfw.social/
2606:4700:30::681b:bdd4
301
https://nsfw.social/
0.030
A
Date: Wed, 01 Jan 2020 00:40:26 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:26 GMT
Location: https://nsfw.social/
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e0711fcafb2d39-TXL

• https://nsfw.social/
104.27.188.212 GZip used - 459 / 773 - 40.62 %
Inline-JavaScript (∑/total): 2/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
2.173
A
small visible content (num chars: 41)
To use Pleroma, please enable JavaScript.
Date: Wed, 01 Jan 2020 00:40:27 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=dbba402e33f8e06651f5f5375a8b0a6a81577839226; Path=/; Domain=.nsfw.social; Expires=2020-01-31 01:40:26; HttpOnly; Secure
Vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: Link,X-RateLimit-Reset,X-RateLimit-Limit,X-RateLimit-Remaining,X-Request-Id,Idempotency-Key
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none'; base-uri 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://nsfw.social wss://nsfw.social; script-src 'self'; upgrade-insecure-requests;
referrer-policy: same-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: FeWcassqLqaEJZQAAzgx
x-xss-protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e071202eb5d121-TXL
Content-Encoding: gzip

• https://nsfw.social/
104.27.189.212 GZip used - 459 / 773 - 40.62 %
Inline-JavaScript (∑/total): 2/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
2.200
A
small visible content (num chars: 41)
To use Pleroma, please enable JavaScript.
Date: Wed, 01 Jan 2020 00:40:29 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=dd4d227e5f3ea3b808a1203d4e9327f6f1577839229; Path=/; Domain=.nsfw.social; Expires=2020-01-31 01:40:29; HttpOnly; Secure
Vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: Link,X-RateLimit-Reset,X-RateLimit-Limit,X-RateLimit-Remaining,X-Request-Id,Idempotency-Key
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none'; base-uri 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://nsfw.social wss://nsfw.social; script-src 'self'; upgrade-insecure-requests;
referrer-policy: same-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: FeWca2noFrAlvVMAAziB
x-xss-protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e07130b82dd11d-TXL
Content-Encoding: gzip

• https://nsfw.social/
2606:4700:30::681b:bcd4 GZip used - 459 / 773 - 40.62 %
Inline-JavaScript (∑/total): 2/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
2.163
A
small visible content (num chars: 41)
To use Pleroma, please enable JavaScript.
Date: Wed, 01 Jan 2020 00:40:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=d3cc4d51a1d307abcb1ffcc05e53b87bc1577839232; Path=/; Domain=.nsfw.social; Expires=2020-01-31 01:40:32; HttpOnly; Secure
Vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: Link,X-RateLimit-Reset,X-RateLimit-Limit,X-RateLimit-Remaining,X-Request-Id,Idempotency-Key
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none'; base-uri 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://nsfw.social wss://nsfw.social; script-src 'self'; upgrade-insecure-requests;
referrer-policy: same-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: FeWcbACx2tkn5dMAAzix
x-xss-protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e07140989fd111-TXL
Content-Encoding: gzip

• https://nsfw.social/
2606:4700:30::681b:bdd4 GZip used - 459 / 773 - 40.62 %
Inline-JavaScript (∑/total): 2/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
2.166
A
small visible content (num chars: 41)
To use Pleroma, please enable JavaScript.
Date: Wed, 01 Jan 2020 00:40:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=dc9462de01491812b5a0418b4340a29c61577839234; Path=/; Domain=.nsfw.social; Expires=2020-01-31 01:40:34; HttpOnly; Secure
Vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: Link,X-RateLimit-Reset,X-RateLimit-Limit,X-RateLimit-Remaining,X-Request-Id,Idempotency-Key
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none'; base-uri 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://nsfw.social wss://nsfw.social; script-src 'self'; upgrade-insecure-requests;
referrer-policy: same-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: FeWcbJaeEnZLqSIAAzkR
x-xss-protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e071503b0b2d45-TXL
Content-Encoding: gzip

• http://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.27.188.212
301
https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.020
A
Visible Content:
Date: Wed, 01 Jan 2020 00:40:37 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:37 GMT
Location: https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e0715fecacd125-TXL

• http://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
104.27.189.212
301
https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.020
A
Visible Content:
Date: Wed, 01 Jan 2020 00:40:37 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:37 GMT
Location: https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e0716139e0d111-TXL

• http://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2606:4700:30::681b:bcd4
301
https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.020
A
Visible Content:
Date: Wed, 01 Jan 2020 00:40:37 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:37 GMT
Location: https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e071628bf2d111-TXL

• http://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2606:4700:30::681b:bdd4
301
https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
0.043
A
Visible Content:
Date: Wed, 01 Jan 2020 00:40:37 GMT
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=3600
Expires: Wed, 01 Jan 2020 01:40:37 GMT
Location: https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e07163fc05d125-TXL

• https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
GZip used - 459 / 773 - 40.62 %
Inline-JavaScript (∑/total): 2/0 Inline-CSS (∑/total): 0/0
200

Html is minified: 100.00 %
2.190

Visible Content: To use Pleroma, please enable JavaScript.
Info: Html-Content with meta and/or script, may be a problem creating a Letsencrypt certificate using http-01 validation
<!DOCTYPE html><html lang=en><head><meta charset=utf-8><meta name=viewport content="width=device-width,initial-scale=1,user-scalable=no"><title>Pleroma</title><script src="/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js"></script><link rel=icon type=image/png href=/favicon.png><link href=/static/css/vendors~app.b2603a50868c68a1c192.css rel=stylesheet><link href=/static/css/app.ae04505b31bb0ee2765e.css rel=stylesheet><link href=/static/fontello.1576263574934.css rel=stylesheet></head><body class=hidden><noscript>To use Pleroma, please enable JavaScript.</noscript><div id=app></div><script type=text/javascript src=/static/js/vendors~app.82d2415271fd2bf6bdfd.js></script><script type=text/javascript src=/static/js/app.e63654e5ca9fff82f59d.js></script></body></html>
Date: Wed, 01 Jan 2020 00:40:38 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: __cfduid=df5367cf20e6469b6c7971fbf1f5f300e1577839238; Path=/; Domain=.nsfw.social; Expires=2020-01-31 01:40:38; HttpOnly; Secure
Vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers: Link,X-RateLimit-Reset,X-RateLimit-Limit,X-RateLimit-Remaining,X-Request-Id,Idempotency-Key
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'none'; base-uri 'self'; frame-ancestors 'none'; img-src 'self' data: https:; media-src 'self' https:; style-src 'self' 'unsafe-inline'; font-src 'self'; manifest-src 'self'; connect-src 'self' https://nsfw.social wss://nsfw.social; script-src 'self'; upgrade-insecure-requests;
referrer-policy: same-origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-request-id: FeWcbWal17b5DbMAAzkh
x-xss-protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Alt-Svc: h3-24=":443"; ma=86400, h3-23=":443"; ma=86400
Server: cloudflare
CF-RAY: 54e071660c8c2d63-TXL
Content-Encoding: gzip

7. Comments


1. General Results, most used to calculate the result

Aname "nsfw.social" is domain, public suffix is "social", top-level-domain-type is "generic", tld-manager is "United TLD Holdco Ltd."
Agood: All ip addresses are public addresses
Agood: No asked Authoritative Name Server had a timeout
Agood: destination is https
Agood - only one version with Http-Status 200
Agood: one preferred version: non-www is preferred
Agood: every cookie sent via https is marked as secure
Agood: every https has a Strict Transport Security Header
Agood: HSTS has includeSubdomains - directive
Agood: HSTS has preload directive
Warning: HSTS preload sent, but not in Preload-List. Never send a preload directive if you don't know what preload means. Check https://hstspreload.org/ to learn the basics about the Google-Preload list. If you send a preload directive, you should **immediately** add your domain to the HSTS preload list via https://hstspreload.org/ . If Google accepts the domain, so the status is "pending": Note that new entries are hardcoded into the Chrome source code and can take several months before they reach the stable version. So you will see this message some months. If you don't want that or if you don't understand "preload", but if you send a preload directive and if you have correct A-redirects, everybody can add your domain to that list. Then you may have problems, it's not easy to undo that. So if you don't want your domain preloaded, remove the preload directive.
HSTS-Preload-Status: unknown. Domain never included in the Preload-list. Check https://hstspreload.org/ to learn some basics about the Google-Preload-List.
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
Ahttp://nsfw.social/ 104.27.188.212
301
https://nsfw.social/
correct redirect http - https with the same domain name
Ahttp://nsfw.social/ 104.27.189.212
301
https://nsfw.social/
correct redirect http - https with the same domain name
Ahttp://nsfw.social/ 2606:4700:30::681b:bcd4
301
https://nsfw.social/
correct redirect http - https with the same domain name
Ahttp://nsfw.social/ 2606:4700:30::681b:bdd4
301
https://nsfw.social/
correct redirect http - https with the same domain name
Bwarning: HSTS max-age is too short - minimum 31536000 = 365 days required, 15552000 seconds = 180 days found

2. DNS- and NameServer - Checks

AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: alice.ns.cloudflare.com,lakas.ns.cloudflare.com
AGood: Nameserver supports TCP connections: 4 good Nameserver
AGood: Nameserver supports Echo Capitalization: 4 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 4 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 4 good Nameserver
AGood: All SOA have the same Serial Number
Agood: CAA entries found, creating certificate is limited: comodoca.com is allowed to create certificates
Agood: CAA entries found, creating certificate is limited: digicert.com is allowed to create certificates
Agood: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create certificates
Agood: CAA entries found, creating certificate is limited: comodoca.com is allowed to create wildcard-certificates
Agood: CAA entries found, creating certificate is limited: digicert.com is allowed to create wildcard-certificates
Agood: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create wildcard-certificates

3. Content- and Performance-critical Checks

https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Not existing ACME-file, but Server sends 200, not 404 or redirect. May be a problem creating a Letsencrypt certificate. Checking /.well-known/acme-challenge/random-filename - a http status 404 - Not Found - is expected. If your server sends content and a http status 200, the validation file (87 bytes, token, dot and the hash of the public part of the account key) may be invisible, so Letsencrypt can't validate your domain. If it is an application that sends this content, perhaps create an exception, so /.well-known/acme-challenge sends raw files. Or create a redirect to another domain and / or port 443, but your Letsencrypt client must support such a solution. Certbot: Use webroot as authenticator - https://certbot.eff.org/docs/using.html Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 supports GZip.
https://nsfw.social/ 104.27.188.212
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://nsfw.social/ 104.27.189.212
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://nsfw.social/ 2606:4700:30::681b:bcd4
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://nsfw.social/ 2606:4700:30::681b:bdd4
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://nsfw.social/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
AGood: Every https result with status 200 has a minified Html-Content with a quota lower then 110 %.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: All CSS / JavaScript files are sent with GZip. That reduces the content of the files. 5 external CSS / JavaScript files found
AGood: All CSS / JavaScript files are sent with a long Cache-Control header (minimum 7 days). So the browser can re-use these files, no download is required. 5 external CSS / JavaScript files with long Cache-Control max-age found
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
ADuration: 91743 milliseconds, 91.743 seconds


8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
nsfw.social
104.27.188.212
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
nsfw.social
104.27.188.212
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
104.27.189.212
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
104.27.189.212
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
2606:4700:30::681b:bcd4
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
2606:4700:30::681b:bcd4
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
2606:4700:30::681b:bdd4
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
2606:4700:30::681b:bdd4
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
nsfw.social
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
nsfw.social
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
nsfw.social
2083
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
nsfw.social
2083
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
nsfw.social
2087
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
nsfw.social
2087
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
nsfw.social
2096
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
nsfw.social
2096
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


nsfw.social
nsfw.social
8443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok

nsfw.social
nsfw.social
8443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
error checking OCSP stapling
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
http/2 via ALPN supported
Tls.1.2
no Tls.1.1
no Tls.1.0
Chain (complete)
1CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, C=US, ST=CA

2CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA


9. Certificates

1.
1.
CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, S=CA, C=US
30.10.2019
09.10.2020
expires in 127 days
*.nsfw.social, nsfw.social, sni.cloudflaressl.com - 3 entries
1.
1.
CN=sni.cloudflaressl.com, O="Cloudflare, Inc.", L=San Francisco, S=CA, C=US
30.10.2019

09.10.2020
expires in 127 days
*.nsfw.social, nsfw.social, sni.cloudflaressl.com - 3 entries

KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:ECDSA SHA256
Serial Number:0C17BDCB5A0FBF7E1D49EBA2326EB5C0
Thumbprint:8EB168124961F5C72A952A3CF164641559CFE033
SHA256 / Certificate:U6VzUhEdZwmw8pcBLvU7cKu0X4s9pbKDgU6o7Ifja0g=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):5619d8ec7000d052e727a5c988a6b891a883a2e602be2169dfbed9bf93d53e7e
SHA256 hex / Subject Public Key Information (SPKI):400ab8bbd3e94672076bd08a8b660c0dbfaf338e27a2f5502a13b7bc4dcab4b0
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:yes


2.
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US
14.10.2015
09.10.2020
expires in 127 days


2.
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, S=CA, C=US
14.10.2015

09.10.2020
expires in 127 days


KeyalgorithmEC Public Key (256 bit, prime256v1)
Signatur:SHA256 With RSA-Encryption
Serial Number:0FF3E61639AA3D1A1265F41F8B34E5B6
Thumbprint:6B53C3B358CEF368201F8741B9C5AEDEEA3861FA
SHA256 / Certificate:YXLXoZlsvvcaAYLdRLmenANXQqnr0DEapzqkczNExaY=
SHA256 hex / Cert (DANE * 0 1):6172d7a1996cbef71a0182dd44b99e9c035742a9ebd0311aa73aa4733344c5a6
SHA256 hex / PublicKey (DANE * 1 1):de470d27391427546a317273157e19c6ec7959f1132beb8be958aaf6524d9f8a
SHA256 hex / Subject Public Key Information (SPKI):6e1ac9cc83daee79c0c88380664860d703e65f8cb5beaa296bce133e0d1d2614
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:http://ocsp.digicert.com
OCSP - must staple:no
Certificate Transparency:no


3.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000
13.05.2025
expires in 1804 days


3.
CN=Baltimore CyberTrust Root, OU=CyberTrust, O=Baltimore, C=IE
12.05.2000

13.05.2025
expires in 1804 days


KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA-1 with RSA Encryption
Serial Number:020000B9
Thumbprint:D4DE20D05E66FC53FE1A50882C78DB2852CAE474
SHA256 / Certificate:Fq9XqfZ2sKsSYJWqXrre8iqzERnWRKyVzUuT2/Pyaus=
SHA256 hex / Cert (DANE * 0 1):16af57a9f676b0ab126095aa5ebadef22ab31119d644ac95cd4b93dbf3f26aeb
SHA256 hex / PublicKey (DANE * 1 1):63d9af9b47b1064d49a10e7b7fd566dbc8caa399459bfc2829c571ad8c6ef34a
SHA256 hex / Subject Public Key Information (SPKI):42a7bca6ba3cafb2f3e1400ba4346bc1db07b9855841258c6d362802e17d1fe0
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no



10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
0
1
3
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0
0
2

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1326189328
precert
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
2019-12-26 00:00:00
2020-03-25 00:00:00
*.nsfw.social, nsfw.social - 2 entries


1214120155
leaf cert
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
2019-10-30 00:00:00
2020-10-09 12:00:00
*.nsfw.social, nsfw.social, sni.cloudflaressl.com - 3 entries


1210498458
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-10-28 10:10:59
2020-01-26 10:10:59
nsfw.social - 1 entries


1210618372
precert
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
2019-10-28 00:00:00
2020-01-26 00:00:00
*.nsfw.social, nsfw.social - 2 entries


1209536634
leaf cert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-10-27 21:26:18
2020-01-25 21:26:18
nsfw.social - 1 entries



2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > 2019 are listed

Issuerlast 7 daysactivenum Certs
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
0
1
2
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0 /0 new
0
2

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
2062472788
leaf cert
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
2019-10-29 23:00:00
2020-10-09 10:00:00
*.nsfw.social, nsfw.social, sni.cloudflaressl.com
3 entries


2046349673
precert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-10-28 09:10:59
2020-01-26 09:10:59
nsfw.social
1 entries


2046440206
precert
CN=CloudFlare Inc ECC CA-2, O="CloudFlare, Inc.", L=San Francisco, C=US, ST=CA
2019-10-27 23:00:00
2020-01-25 23:00:00
*.nsfw.social, nsfw.social
2 entries


2044404703
precert
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-10-27 20:26:18
2020-01-25 20:26:18
nsfw.social
1 entries



11. Html-Content - Entries

Summary

Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://nsfw.social/
104.27.188.212
link
other
4

0


0
0
0


meta
other
2

0


0
0
0


script

1
8,274 Bytes
0
1
0
0
0
0

https://nsfw.social/
104.27.189.212
link
other
4

0


0
0
0


meta
other
2

0


0
0
0


script

1
8,274 Bytes
0
1
0
0
0
0

https://nsfw.social/
2606:4700:30::681b:bcd4
link
other
4

0


0
0
0


meta
other
2

0


0
0
0


script

1
8,274 Bytes
0
1
0
0
0
0

https://nsfw.social/
2606:4700:30::681b:bdd4
link
other
4

0


0
0
0


meta
other
2

0


0
0
0


script

1
8,274 Bytes
0
1
0
0
0
0

Details

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://nsfw.social/
104.27.188.212
link




4
ok








meta




1
ok








meta

width=device-width,initial-scale=1,user-scalable=no


1
ok








script
src
/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js
200

1
ok
Missing defer / async attribute. application/javascript; charset=utf-8

Cache-Control: public, max-age=31536000 - with long duration found.
GZip: 8274/27775 Bytes




local SRI possible, possible hash-values:

sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=
sha384-8sFLPOzv2YRyzD57kfdX4IweR8NC1rZR7nLV41yWc6b8qeXCRNVWJBw5imyrceIY
sha512-UdPFegs0Dh+fWQBgF6ucdFEcJNxUWKyLW63kuLHuSavnz8/pPBaxn7YZvfulo8TiUzBAQqf+nx+fytWyDSR7Zg==

<script src="/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js" crossorigin="anonymous" integrity="sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=" />



104.27.189.212
link




4
ok








meta




1
ok








meta

width=device-width,initial-scale=1,user-scalable=no


1
ok








script
src
/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js
200

1
ok
Missing defer / async attribute. application/javascript; charset=utf-8

Cache-Control: public, max-age=31536000 - with long duration found.
GZip: 8274/27775 Bytes




local SRI possible, possible hash-values:

sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=
sha384-8sFLPOzv2YRyzD57kfdX4IweR8NC1rZR7nLV41yWc6b8qeXCRNVWJBw5imyrceIY
sha512-UdPFegs0Dh+fWQBgF6ucdFEcJNxUWKyLW63kuLHuSavnz8/pPBaxn7YZvfulo8TiUzBAQqf+nx+fytWyDSR7Zg==

<script src="/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js" crossorigin="anonymous" integrity="sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=" />



2606:4700:30::681b:bcd4
link




4
ok








meta




1
ok








meta

width=device-width,initial-scale=1,user-scalable=no


1
ok








script
src
/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js
200

1
ok
Missing defer / async attribute. application/javascript; charset=utf-8

Cache-Control: public, max-age=31536000 - with long duration found.
GZip: 8274/27775 Bytes




local SRI possible, possible hash-values:

sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=
sha384-8sFLPOzv2YRyzD57kfdX4IweR8NC1rZR7nLV41yWc6b8qeXCRNVWJBw5imyrceIY
sha512-UdPFegs0Dh+fWQBgF6ucdFEcJNxUWKyLW63kuLHuSavnz8/pPBaxn7YZvfulo8TiUzBAQqf+nx+fytWyDSR7Zg==

<script src="/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js" crossorigin="anonymous" integrity="sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=" />



2606:4700:30::681b:bdd4
link




4
ok








meta




1
ok








meta

width=device-width,initial-scale=1,user-scalable=no


1
ok








script
src
/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js
200

1
ok
Missing defer / async attribute. application/javascript; charset=utf-8

Cache-Control: public, max-age=31536000 - with long duration found.
GZip: 8274/27775 Bytes




local SRI possible, possible hash-values:

sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=
sha384-8sFLPOzv2YRyzD57kfdX4IweR8NC1rZR7nLV41yWc6b8qeXCRNVWJBw5imyrceIY
sha512-UdPFegs0Dh+fWQBgF6ucdFEcJNxUWKyLW63kuLHuSavnz8/pPBaxn7YZvfulo8TiUzBAQqf+nx+fytWyDSR7Zg==

<script src="/cdn-cgi/apps/head/gs627VkotcwqZ8NpGNnFh6A5yhw.js" crossorigin="anonymous" integrity="sha256-JarRb2cXLtDG86+VVKHHTXSGwrf+jBVhQVFQDVqoN1A=" />




12. Nameserver - IP-Adresses (alpha)

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers:

No NameServer - IP address informations found. The feature is new (2020-05-07), so recheck this domain.


13. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.nsfw.social
0

no CAA entry found
1
0
nsfw.social
5
issue
comodoca.com
1
0

9
issuewild
comodoca.com
1
0

5
issue
digicert.com
1
0

9
issuewild
digicert.com
1
0

5
issue
digicert.com; cansignhttpexchanges=yes
1
0

9
issuewild
digicert.com; cansignhttpexchanges=yes
1
0

5
issue
letsencrypt.org
1
0

9
issuewild
letsencrypt.org
1
0
social
0

no CAA entry found
1
0


14. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
nsfw.social
brave-ledger-verification=b5ab376fe9a528b71ce2ea51c2f3263598b5178a3df53d57074e04612b877d76
ok
1
0
nsfw.social
ca3-c603de9d89a94ecd8cbd78c2e5bb4429
ok
1
0
nsfw.social
v=spf1 mx -all
ok
1
0
www.nsfw.social
v=spf1 -all
ok
1
0
_acme-challenge.nsfw.social

Name Error - The domain name does not exist
1
0
_acme-challenge.www.nsfw.social

Name Error - The domain name does not exist
1
0
_acme-challenge.nsfw.social.nsfw.social

Name Error - The domain name does not exist
1
0
_acme-challenge.www.nsfw.social.nsfw.social

Name Error - The domain name does not exist
1
0
_acme-challenge.www.nsfw.social.www.nsfw.social

Name Error - The domain name does not exist
1
0


15. Portchecks

Domain or IPPortDescriptionResultAnswer
nsfw.social
21
FTP



nsfw.social
21
FTP



nsfw.social
22
SSH



nsfw.social
22
SSH



nsfw.social
25
SMTP



nsfw.social
25
SMTP



nsfw.social
53
DNS



nsfw.social
53
DNS



nsfw.social
110
POP3



nsfw.social
110
POP3



nsfw.social
143
IMAP



nsfw.social
143
IMAP



nsfw.social
465
SMTP (encrypted)



nsfw.social
465
SMTP (encrypted)



nsfw.social
587
SMTP (encrypted, submission)



nsfw.social
587
SMTP (encrypted, submission)



nsfw.social
993
IMAP (encrypted)



nsfw.social
993
IMAP (encrypted)



nsfw.social
995
POP3 (encrypted)



nsfw.social
995
POP3 (encrypted)



nsfw.social
1433
MS SQL



nsfw.social
1433
MS SQL



nsfw.social
2082
cPanel (http)
open
http://nsfw.social:2082/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
2082
cPanel (http)
open
http://nsfw.social:2082/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
2083
cPanel (https)
open
https://nsfw.social:2083/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
2083
cPanel (https)
open
https://nsfw.social:2083/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
2086
WHM (http)
open
http://nsfw.social:2086/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
2086
WHM (http)
open
http://nsfw.social:2086/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
2087
WHM (https)
open
https://nsfw.social:2087/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
2087
WHM (https)
open
https://nsfw.social:2087/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
2089
cPanel Licensing



nsfw.social
2089
cPanel Licensing



nsfw.social
2095
cPanel Webmail (http)
open
http://nsfw.social:2095/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
2095
cPanel Webmail (http)
open
http://nsfw.social:2095/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
2096
cPanel Webmail (https)
open
https://nsfw.social:2096/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
2096
cPanel Webmail (https)
open
https://nsfw.social:2096/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
2222
DirectAdmin (http)



nsfw.social
2222
DirectAdmin (http)



nsfw.social
2222
DirectAdmin (https)



nsfw.social
2222
DirectAdmin (https)



nsfw.social
3306
mySql



nsfw.social
3306
mySql



nsfw.social
5224
Plesk Licensing



nsfw.social
5224
Plesk Licensing



nsfw.social
5432
PostgreSQL



nsfw.social
5432
PostgreSQL



nsfw.social
8080
Ookla Speedtest (http)
open
http://nsfw.social:8080/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
8080
Ookla Speedtest (http)
open
http://nsfw.social:8080/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
8080
Ookla Speedtest (https)
open
https://nsfw.social:8080/
Http-Status: -4
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

nsfw.social
8080
Ookla Speedtest (https)
open
https://nsfw.social:8080/
Http-Status: -4
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

nsfw.social
8083
VestaCP http



nsfw.social
8083
VestaCP http



nsfw.social
8083
VestaCP https



nsfw.social
8083
VestaCP https



nsfw.social
8443
Plesk Administration (https)
open
https://nsfw.social:8443/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
8443
Plesk Administration (https)
open
https://nsfw.social:8443/
Http-Status: 521
Origin Down
Certificate is valid
nsfw.social
8447
Plesk Installer + Updates



nsfw.social
8447
Plesk Installer + Updates



nsfw.social
8880
Plesk Administration (http)
open
http://nsfw.social:8880/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
8880
Plesk Administration (http)
open
http://nsfw.social:8880/
Http-Status: 301
Redirect: https://nsfw.social/
nsfw.social
10000
Webmin (http)



nsfw.social
10000
Webmin (http)



nsfw.social
10000
Webmin (https)



nsfw.social
10000
Webmin (https)



104.27.188.212
21
FTP



104.27.188.212
21
FTP



104.27.188.212
22
SSH



104.27.188.212
22
SSH



104.27.188.212
25
SMTP



104.27.188.212
25
SMTP



104.27.188.212
53
DNS



104.27.188.212
53
DNS



104.27.188.212
110
POP3



104.27.188.212
110
POP3



104.27.188.212
143
IMAP



104.27.188.212
143
IMAP



104.27.188.212
465
SMTP (encrypted)



104.27.188.212
465
SMTP (encrypted)



104.27.188.212
587
SMTP (encrypted, submission)



104.27.188.212
587
SMTP (encrypted, submission)



104.27.188.212
993
IMAP (encrypted)



104.27.188.212
993
IMAP (encrypted)



104.27.188.212
995
POP3 (encrypted)



104.27.188.212
995
POP3 (encrypted)



104.27.188.212
1433
MS SQL



104.27.188.212
1433
MS SQL



104.27.188.212
2082
cPanel (http)
open
http://104.27.188.212:2082/
Http-Status: 403
Forbidden

104.27.188.212
2082
cPanel (http)
open
http://104.27.188.212:2082/
Http-Status: 403
Forbidden

104.27.188.212
2083
cPanel (https)
open
https://104.27.188.212:2083/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
2083
cPanel (https)
open
https://104.27.188.212:2083/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
2086
WHM (http)
open
http://104.27.188.212:2086/
Http-Status: 403
Forbidden

104.27.188.212
2086
WHM (http)
open
http://104.27.188.212:2086/
Http-Status: 403
Forbidden

104.27.188.212
2087
WHM (https)
open
https://104.27.188.212:2087/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
2087
WHM (https)
open
https://104.27.188.212:2087/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
2089
cPanel Licensing



104.27.188.212
2089
cPanel Licensing



104.27.188.212
2095
cPanel Webmail (http)
open
http://104.27.188.212:2095/
Http-Status: 403
Forbidden

104.27.188.212
2095
cPanel Webmail (http)
open
http://104.27.188.212:2095/
Http-Status: 403
Forbidden

104.27.188.212
2096
cPanel Webmail (https)
open
https://104.27.188.212:2096/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
2096
cPanel Webmail (https)
open
https://104.27.188.212:2096/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
2222
DirectAdmin (http)



104.27.188.212
2222
DirectAdmin (http)



104.27.188.212
2222
DirectAdmin (https)



104.27.188.212
2222
DirectAdmin (https)



104.27.188.212
3306
mySql



104.27.188.212
3306
mySql



104.27.188.212
5224
Plesk Licensing



104.27.188.212
5224
Plesk Licensing



104.27.188.212
5432
PostgreSQL



104.27.188.212
5432
PostgreSQL



104.27.188.212
8080
Ookla Speedtest (http)
open
http://104.27.188.212:8080/
Http-Status: 403
Forbidden

104.27.188.212
8080
Ookla Speedtest (http)
open
http://104.27.188.212:8080/
Http-Status: 403
Forbidden

104.27.188.212
8080
Ookla Speedtest (https)
open
https://104.27.188.212:8080/
Http-Status: -4
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

104.27.188.212
8080
Ookla Speedtest (https)
open
https://104.27.188.212:8080/
Http-Status: -4
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

104.27.188.212
8083
VestaCP http



104.27.188.212
8083
VestaCP http



104.27.188.212
8083
VestaCP https



104.27.188.212
8083
VestaCP https



104.27.188.212
8443
Plesk Administration (https)
open
https://104.27.188.212:8443/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
8443
Plesk Administration (https)
open
https://104.27.188.212:8443/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.188.212
8447
Plesk Installer + Updates



104.27.188.212
8447
Plesk Installer + Updates



104.27.188.212
8880
Plesk Administration (http)
open
http://104.27.188.212:8880/
Http-Status: 403
Forbidden

104.27.188.212
8880
Plesk Administration (http)
open
http://104.27.188.212:8880/
Http-Status: 403
Forbidden

104.27.188.212
10000
Webmin (http)



104.27.188.212
10000
Webmin (http)



104.27.188.212
10000
Webmin (https)



104.27.188.212
10000
Webmin (https)



104.27.189.212
21
FTP



104.27.189.212
21
FTP



104.27.189.212
22
SSH



104.27.189.212
22
SSH



104.27.189.212
25
SMTP



104.27.189.212
25
SMTP



104.27.189.212
53
DNS



104.27.189.212
53
DNS



104.27.189.212
110
POP3



104.27.189.212
110
POP3



104.27.189.212
143
IMAP



104.27.189.212
143
IMAP



104.27.189.212
465
SMTP (encrypted)



104.27.189.212
465
SMTP (encrypted)



104.27.189.212
587
SMTP (encrypted, submission)



104.27.189.212
587
SMTP (encrypted, submission)



104.27.189.212
993
IMAP (encrypted)



104.27.189.212
993
IMAP (encrypted)



104.27.189.212
995
POP3 (encrypted)



104.27.189.212
995
POP3 (encrypted)



104.27.189.212
1433
MS SQL



104.27.189.212
1433
MS SQL



104.27.189.212
2082
cPanel (http)
open
http://104.27.189.212:2082/
Http-Status: 403
Forbidden

104.27.189.212
2082
cPanel (http)
open
http://104.27.189.212:2082/
Http-Status: 403
Forbidden

104.27.189.212
2083
cPanel (https)
open
https://104.27.189.212:2083/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
2083
cPanel (https)
open
https://104.27.189.212:2083/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
2086
WHM (http)
open
http://104.27.189.212:2086/
Http-Status: 403
Forbidden

104.27.189.212
2086
WHM (http)
open
http://104.27.189.212:2086/
Http-Status: 403
Forbidden

104.27.189.212
2087
WHM (https)
open
https://104.27.189.212:2087/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
2087
WHM (https)
open
https://104.27.189.212:2087/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
2089
cPanel Licensing



104.27.189.212
2089
cPanel Licensing



104.27.189.212
2095
cPanel Webmail (http)
open
http://104.27.189.212:2095/
Http-Status: 403
Forbidden

104.27.189.212
2095
cPanel Webmail (http)
open
http://104.27.189.212:2095/
Http-Status: 403
Forbidden

104.27.189.212
2096
cPanel Webmail (https)
open
https://104.27.189.212:2096/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
2096
cPanel Webmail (https)
open
https://104.27.189.212:2096/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
2222
DirectAdmin (http)



104.27.189.212
2222
DirectAdmin (http)



104.27.189.212
2222
DirectAdmin (https)



104.27.189.212
2222
DirectAdmin (https)



104.27.189.212
3306
mySql



104.27.189.212
3306
mySql



104.27.189.212
5224
Plesk Licensing



104.27.189.212
5224
Plesk Licensing



104.27.189.212
5432
PostgreSQL



104.27.189.212
5432
PostgreSQL



104.27.189.212
8080
Ookla Speedtest (http)
open
http://104.27.189.212:8080/
Http-Status: 403
Forbidden

104.27.189.212
8080
Ookla Speedtest (http)
open
http://104.27.189.212:8080/
Http-Status: 403
Forbidden

104.27.189.212
8080
Ookla Speedtest (https)
open
https://104.27.189.212:8080/
Http-Status: -4
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

104.27.189.212
8080
Ookla Speedtest (https)
open
https://104.27.189.212:8080/
Http-Status: -4
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

104.27.189.212
8083
VestaCP http



104.27.189.212
8083
VestaCP http



104.27.189.212
8083
VestaCP https



104.27.189.212
8083
VestaCP https



104.27.189.212
8443
Plesk Administration (https)
open
https://104.27.189.212:8443/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
8443
Plesk Administration (https)
open
https://104.27.189.212:8443/
Http-Status: -10
SecureChannelFailure - The request was aborted: Could not create SSL/TLS secure channel.

104.27.189.212
8447
Plesk Installer + Updates



104.27.189.212
8447
Plesk Installer + Updates



104.27.189.212
8880
Plesk Administration (http)
open
http://104.27.189.212:8880/
Http-Status: 403
Forbidden

104.27.189.212
8880
Plesk Administration (http)
open
http://104.27.189.212:8880/
Http-Status: 403
Forbidden

104.27.189.212
10000
Webmin (http)



104.27.189.212
10000
Webmin (http)



104.27.189.212
10000
Webmin (https)



104.27.189.212
10000
Webmin (https)





Permalink: https://check-your-website.server-daten.de/?i=c5edf1e0-b895-43b0-ad96-b316534c959a


Last Result: https://check-your-website.server-daten.de/?q=nsfw.social - 2020-01-01 01:40:05


Do you like this page? Support this tool, add a link on your page:

<a href="https://check-your-website.server-daten.de/?q=nsfw.social" target="_blank">Check this Site: nsfw.social</a>