Check DNS, Urls + Redirects, Certificates and Content of your Website

0 in Queue, 0 of max. 8 Checks (18:04:51)
Why should you only use Prefix - Cookies? |
Hall of Fame - A+ and A

 

Shortcuts: 1. IP-Addresses | 2. DNSSEC | 3. Name Servers | 4. SOA-Entries | 5. Screenshots | 6. Url-Checks | 7. Comments | 8. Connections | 9. Certificates | 10. CT-Logs | 11. Html-Content | 12. Html-Parsing | 13. NameServer-IPAddresses | 14. CAA | 15. TXT | 16. DomainServiceEntries | 17. Cipher Suites | 18. Portchecks |

 

X

 

DNS-problem - authoritative Nameserver refused, not defined or timeout

 

Checked:
12.03.2025 11:35:08

 

Older results

No older results found

 

1. IP-Addresses

HostTypeIP-Addressis auth.∑ Queries∑ Timeout
szerman.info
A
62.164.217.211
Karlsruhe/Baden-Wurttemberg/Germany (DE) - Contabo GmbH
Hostname: vmi2347415.contaboserver.net
yes
2
0

AAAA

yes


www.szerman.info
CNAME
szerman.info
yes
1
0

A
62.164.217.211
Karlsruhe/Baden-Wurttemberg/Germany (DE) - Contabo GmbH
Hostname: vmi2347415.contaboserver.net
yes


*.szerman.info
A
62.164.217.211
yes



AAAA

yes



CNAME
szerman.info
yes


 

2. DNSSEC

Zone (*)DNSSEC - Informations


Zone: (root)

(root)
1 DS RR published






DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest 4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=






 Status: Valid because published






3 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 26470, Flags 256






Public Key with Algorithm 8, KeyTag 38696, Flags 257 (SEP = Secure Entry Point)






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner (root), Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 02.04.2025, 00:00:00 +, Signature-Inception: 12.03.2025, 00:00:00 +, KeyTag 20326, Signer-Name: (root)






 Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet






 Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: info

info
1 DS RR in the parent zone found






DS with Algorithm 8, KeyTag 5104, DigestType 2 and Digest GvdUio0+KVDCAwN1ffk5DCbPo54myLao9six5y3Y90Q=






1 RRSIG RR to validate DS RR found






RRSIG-Owner info., Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 25.03.2025, 05:00:00 +, Signature-Inception: 12.03.2025, 04:00:00 +, KeyTag 26470, Signer-Name: (root)






 Status: Good - Algorithmus 8 and DNSKEY with KeyTag 26470 used to validate the DS RRSet in the parent zone






3 DNSKEY RR found






Public Key with Algorithm 8, KeyTag 5104, Flags 257 (SEP = Secure Entry Point)






Public Key with Algorithm 8, KeyTag 22704, Flags 256






Public Key with Algorithm 8, KeyTag 51379, Flags 256






1 RRSIG RR to validate DNSKEY RR found






RRSIG-Owner info., Algorithm: 8, 1 Labels, original TTL: 3600 sec, Signature-expiration: 30.03.2025, 15:23:20 +, Signature-Inception: 09.03.2025, 14:23:20 +, KeyTag 5104, Signer-Name: info






 Status: Good - Algorithmus 8 and DNSKEY with KeyTag 5104 used to validate the DNSKEY RRSet






 Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 5104, DigestType 2 and Digest "GvdUio0+KVDCAwN1ffk5DCbPo54myLao9six5y3Y90Q=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone



Zone: szerman.info

szerman.info
0 DS RR in the parent zone found






DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed query name "2mhvcneoftjdfcjk836v997pp9flu379" between the hashed NSEC3-owner "2mhaii7lf6csu29rsmp683dokdlq3496" and the hashed NextOwner "2mi3oihkf3hn1gohsh040eo6b8ervj0d". So the parent zone confirmes the not-existence of a DS RR.
Bitmap: NS, DS, RRSIG Validated: RRSIG-Owner 2mhaii7lf6csu29rsmp683dokdlq3496.info., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 30.03.2025, 15:23:20 +, Signature-Inception: 09.03.2025, 14:23:20 +, KeyTag 51379, Signer-Name: info






DS-Query in the parent zone sends valid NSEC3 RR with the Hash "nts9719ejeced08jegq9ombmafneqsd7" as Owner. That's the Hash of "info" with the NextHashedOwnerName "ntsgcq8bftqmnbickse3jqev1v3utmru". So that domain name is the Closest Encloser of "szerman.info". Opt-Out: True.
Bitmap: NS, SOA, RRSIG, DNSKEY, NSEC3PARAM Validated: RRSIG-Owner nts9719ejeced08jegq9ombmafneqsd7.info., Algorithm: 8, 2 Labels, original TTL: 3600 sec, Signature-expiration: 02.04.2025, 10:27:23 +, Signature-Inception: 12.03.2025, 09:27:23 +, KeyTag 51379, Signer-Name: info






0 DNSKEY RR found









Zone: www.szerman.info

www.szerman.info
0 DS RR in the parent zone found

 

3. Name Servers

DomainNameserverNS-IP
szerman.info
  ns11.infomaniak.ch
93.88.255.151
Geneva/Switzerland (CH) - Infomaniak Network SA

 
2001:1600:0:aaaa::7
Les Acacias/Geneva/Switzerland (CH) - Infomaniak Network SA

  ns12.infomaniak.ch
93.88.255.152
Geneva/Switzerland (CH) - Infomaniak Network SA

 
2001:1600:0:aaaa::8
Les Acacias/Geneva/Switzerland (CH) - Infomaniak Network SA
info
  a0.info.afilias-nst.info / app14.ams2.hosts.meta.redstone.afilias-nst.info-1615580861


  a2.info.afilias-nst.info / FRA6


  b0.info.afilias-nst.org / app4.ams2.hosts.meta.redstone.afilias-nst.info-1615580861


  b2.info.afilias-nst.org / FRA3


  c0.info.afilias-nst.info / app2.ams2.hosts.meta.redstone.afilias-nst.info-1615580861


  d0.info.afilias-nst.org / app12.nrt1.hosts.meta.redstone.afilias-nst.info-1615580861

 

4. SOA-Entries


Domain:info
Zone-Name:info
Primary:a0.info.afilias-nst.info
Mail:hostmaster.donuts.email
Serial:1741775007
Refresh:7200
Retry:900
Expire:1209600
TTL:3600
num Entries:6


Domain:szerman.info
Zone-Name:szerman.info
Primary:ns11.infomaniak.ch
Mail:hostmaster.infomaniak.ch
Serial:2025030724
Refresh:10800
Retry:3600
Expire:605800
TTL:3600
num Entries:4


5. Screenshots

Startaddress: https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F, address used: https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F, Screenshot created 2025-03-12 11:40:10 +00:0

 

Mobil (412px x 732px)

 

1047 milliseconds

 

Screenshot mobile - https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
Mobil + Landscape (732px x 412px)

 

1057 milliseconds

 

Screenshot mobile landscape - https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
Screen (1280px x 1680px)

 

1144 milliseconds

 

Screenshot Desktop - https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F

 

Mobile- and other Chrome-Checks


widthheight
visual Viewport412732
content Size412732

 

Good: No horizontal scrollbar. Content-size width = visual Viewport width.

 

6. Url-Checks


:

:
DomainnameHttp-StatusredirectSec.G
• http://szerman.info/
62.164.217.211
302
https://szerman.info/
Html is minified: 100.00 %
0.066
A
Location: https://szerman.info/
Date: Wed, 12 Mar 2025 10:35:51 GMT
Content-Length: 5

• http://www.szerman.info/
62.164.217.211
404

Html is minified: 105.56 %
0.034
M
Not Found
X-Content-Type-Options: nosniff
Date: Wed, 12 Mar 2025 10:35:51 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 19

• https://szerman.info/
62.164.217.211
302
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F

2.750
B
Location: https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
Date: Wed, 12 Mar 2025 10:35:51 GMT
Content-Length: 0

• https://www.szerman.info/
62.164.217.211
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0		404

Html is minified: 105.56 %
Other inline scripts (∑/total): 0/0		2.460
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
X-Content-Type-Options: nosniff
Date: Wed, 12 Mar 2025 10:35:56 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 19

• https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
gzip used - 7086 / 19086 - 62.87 %
Inline-JavaScript (∑/total): 8/10479 Inline-CSS (∑/total): 0/0		200

Html is minified: 120.89 %
Other inline scripts (∑/total): 0/0		2.824
I
Cache-Control: no-store, must-revalidate, no-cache, max-age=0, private
Date: Wed, 12 Mar 2025 10:36:05 GMT
Link: </_next/static/media/a34f9d1faa5f3315-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", </_next/static/css/2c69d3a58a2da472.css>; rel=preload; as="style"
Referrer-Policy: strict-origin-when-cross-origin
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Vary: RSC,Next-Router-State-Tree,Next-Router-Prefetch,Next-Router-Segment-Prefetch,Accept-Encoding
X-Content-Type-Options: nosniff
X-Forwarded-Proto: https
X-Frame-Options: SAMEORIGIN
Transfer-Encoding: chunked
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Content-Length: 7086

• http://szerman.info/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
62.164.217.211
404


0.033
A
Not Found
Visible Content:
Date: Wed, 12 Mar 2025 10:36:00 GMT
Content-Length: 0

• http://www.szerman.info/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
62.164.217.211
404


0.033
A
Not Found
Visible Content:
Date: Wed, 12 Mar 2025 10:36:00 GMT
Content-Length: 0

• https://62.164.217.211/
62.164.217.211
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0		404

Html is minified: 105.56 %
Other inline scripts (∑/total): 0/0		2.403
N
Not Found
Certificate error: RemoteCertificateNameMismatch, RemoteCertificateChainErrors
X-Content-Type-Options: nosniff
Date: Wed, 12 Mar 2025 10:36:00 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 19

 

7. Comments


1. General Results, most used to calculate the result

Aname "szerman.info" is domain, public suffix is ".info", top-level-domain is ".info", top-level-domain-type is "generic", tld-manager is "Afilias Limited", num .info-domains preloaded: 1570 (complete: 263653)
AGood: All ip addresses are public addresses
Warning: Only one ip address found: szerman.info has only one ip address.
Warning: Only one ip address found: www.szerman.info has only one ip address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: szerman.info has no ipv6 address.
Warning: No ipv6 address found. Ipv6 is the future with a lot of new features. So every domain name should have an ipv6 address. See https://en.wikipedia.org/wiki/IPv6: www.szerman.info has no ipv6 address.
AGood: No asked Authoritative Name Server had a timeout
Ahttps://szerman.info/ 62.164.217.211
302
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
Correct redirect https to https
AGood: destination is https
AGood - only one version with Http-Status 200
AGood: one preferred version: non-www is preferred
AGood: No cookie sent via http.
Warning: HSTS preload sent, but not in Preload-List. Never send a preload directive if you don't know what preload means. Check https://hstspreload.org/ to learn the basics about the Google-Preload list. If you send a preload directive, you should **immediately** add your domain to the HSTS preload list via https://hstspreload.org/ . If Google accepts the domain, so the status is "pending": Note that new entries are hardcoded into the Chrome source code and can take several months before they reach the stable version. So you will see this message some months. If you don't want that or if you don't understand "preload", but if you send a preload directive and if you have correct A-redirects, everybody can add your domain to that list. Then you may have problems, it's not easy to undo that. So if you don't want your domain preloaded, remove the preload directive.
Ahttp://szerman.info/ 62.164.217.211
302
https://szerman.info/
Correct redirect http - https with the same domain name
Bhttps://szerman.info/ 62.164.217.211
302

Missing HSTS-Header
Bhttps://www.szerman.info/ 62.164.217.211
404

Missing HSTS-Header
Ihttps://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
200

Content problems or problems with resources included - http links, files doesn't exist, different Content-Type definitions. Check the Html-Content - Part.
Mhttp://www.szerman.info/ 62.164.217.211
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://www.szerman.info/ 62.164.217.211
404

Misconfiguration - main pages should never send http status 400 - 499
Mhttps://62.164.217.211/ 62.164.217.211
404

Misconfiguration - main pages should never send http status 400 - 499
Nhttps://www.szerman.info/ 62.164.217.211
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nhttps://62.164.217.211/ 62.164.217.211
404

Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nszerman.info:8443


Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Nwww.szerman.info:8443


Error - Certificate isn't trusted, RemoteCertificateNameMismatch, RemoteCertificateChainErrors
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are the same. So that domain doesn't require Server Name Indication (SNI), it's the primary certificate of that set of ip addresses.: Domain www.szerman.info, 1 ip addresses, 1 different http results.
Info: Checking all ip addresses of that domain without sending the hostname only one certificate found. Checking all ip addresses and sending the hostname only one certificate found. Both certificates are different. So that domain requires Server Name Indication (SNI), so the server is able to select the correct certificate.: Domain szerman.info, 1 ip addresses.
BNo _mta-sts TXT record found (mta-sts: Mail Transfer Agent Strict Transport Security - see RFC 8461). Read the result of server-daten.de (Url-Checks, Comments, Connections and DomainServiceRecords) to see a complete definition. Domainname: _mta-sts.szerman.info

2. Header-Checks

Awww.szerman.info 62.164.217.211
X-Content-Type-Options
Ok: Header without syntax errors found: nosniff
Apangolin.szerman.info
X-Content-Type-Options
Ok: Header without syntax errors found: nosniff
A
Referrer-Policy
Ok: Header without syntax errors found: strict-origin-when-cross-origin
A
X-Frame-Options
Ok: Header without syntax errors found: SAMEORIGIN
B

Info: Header is deprecated. May not longer work in modern browsers. SAMEORIGIN. Better solution: Use a Content-Security-Policy Header with a frame-ancestors directive. DENY - use 'none', SAMEORIGIN - use 'self'. If you want to allow some domains to frame your page, add these urls.
Fwww.szerman.info 62.164.217.211
Content-Security-Policy
Critical: Missing Header:
Fwww.szerman.info 62.164.217.211
Referrer-Policy
Critical: Missing Header:
Fwww.szerman.info 62.164.217.211
Permissions-Policy
Critical: Missing Header:
Bwww.szerman.info 62.164.217.211
Cross-Origin-Embedder-Policy
Info: Missing Header
Bwww.szerman.info 62.164.217.211
Cross-Origin-Opener-Policy
Info: Missing Header
Bwww.szerman.info 62.164.217.211
Cross-Origin-Resource-Policy
Info: Missing Header
Fpangolin.szerman.info
Content-Security-Policy
Critical: Missing Header:
Fpangolin.szerman.info
Permissions-Policy
Critical: Missing Header:
Bpangolin.szerman.info
Cross-Origin-Embedder-Policy
Info: Missing Header
Bpangolin.szerman.info
Cross-Origin-Opener-Policy
Info: Missing Header
Bpangolin.szerman.info
Cross-Origin-Resource-Policy
Info: Missing Header

3. DNS- and NameServer - Checks

AInfo:: 7 Root-climbing DNS Queries required to find all IPv4- and IPv6-Addresses of 2 Name Servers.
AInfo:: 7 Queries complete, 7 with IPv6, 0 with IPv4.
AGood: All DNS Queries done via IPv6.
Ok (4 - 8):: An average of 3.5 queries per domain name server required to find all ip addresses of all name servers.
AInfo:: 2 different Name Servers found: ns11.infomaniak.ch, ns12.infomaniak.ch, 2 Name Servers included in Delegation: ns11.infomaniak.ch, ns12.infomaniak.ch, 2 Name Servers included in 1 Zone definitions: ns11.infomaniak.ch, ns12.infomaniak.ch, 1 Name Servers listed in SOA.Primary: ns11.infomaniak.ch.
AGood: Only one SOA.Primary Name Server found.: ns11.infomaniak.ch.
AGood: SOA.Primary Name Server included in the delegation set.: ns11.infomaniak.ch.
AGood: Consistency between delegation and zone. The set of NS records served by the authoritative name servers must match those proposed for the delegation in the parent zone. Ordered list of name servers: ns11.infomaniak.ch, ns12.infomaniak.ch
AGood: All Name Server Domain Names have a Public Suffix.
AGood: All Name Server Domain Names ending with a Public Suffix have minimal one IPv4- or IPv6 address.
AGood: All Name Server ip addresses are public.
AGood: Minimal 2 different name servers (public suffix and public ip address) found: 2 different Name Servers found
AGood: All name servers have ipv4- and ipv6-addresses.: 2 different Name Servers found
Warning: All Name Servers have the same Top Level Domain / Public Suffix. If there is a problem with that Top Level Domain, your domain may be affected. Better: Use Name Servers with different top level domains.: 2 Name Servers, 1 Top Level Domain: ch
Warning: All Name Servers have the same domain name. If there is a problem with that domain name (or with the name servers of that domain name), your domain may be affected. Better: Use Name Servers with different domain names / different top level domains.: Only one domain name used: infomaniak.ch
Warning: All Name Servers from the same Country / IP location.: 2 Name Servers, 1 Countries: CH
AInfo: Ipv4-Subnet-list: 2 Name Servers, 1 different subnets (first Byte): 93., 1 different subnets (first two Bytes): 93.88., 1 different subnets (first three Bytes): 93.88.255.
XFatal: All Name Server IPv4 addresses from the same subnet. Check https://www.iana.org/help/nameserver-requirements to learn some basics about name server configurations. If you manage these name servers, fix it. If it's your provider, change your provider.:
AInfo: IPv6-Subnet-list: 2 Name Servers with IPv6, 1 different subnets (first block): 2001:, 1 different subnets (first two blocks): 2001:1600:, 1 different subnets (first three blocks): 2001:1600:0000:, 1 different subnets (first four blocks): 2001:1600:0000:aaaa:
Fatal: All Name Server IPv6 addresses from the same subnet.
AGood: Nameserver supports TCP connections: 4 good Nameserver
AGood: Nameserver supports Echo Capitalization: 4 good Nameserver
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 4 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 4 good Nameserver
AGood: All SOA have the same Serial Number
AGood: CAA entries found, creating certificate is limited: letsencrypt.org is allowed to create certificates

4. Content- and Performance-critical Checks

AGood: All checks /.well-known/acme-challenge/random-filename without redirects answer with the expected http status 404 - Not Found. Creating a Letsencrypt certificate via http-01 challenge should work. If it doesn't work: Check your vHost configuration (apachectl -S, httpd -S, nginx -T). Every combination of port and ServerName / ServerAlias (Apache) or Server (Nginx) must be unique. Merge duplicated entries in one vHost. If you use an IIS, extensionless files must be allowed in the /.well-known/acme-challenge subdirectory. Create a web.config in that directory. Content: <configuration><system.webServer><staticContent><mimeMap fileExtension="." mimeType="text/plain" /></staticContent></system.webServer></configuration>. If you have a redirect http ⇒ https, that's ok, Letsencrypt follows such redirects to port 80 / 443 (same or other server). There must be a certificate. But the certificate may be expired, self signed or with a not matching domain name. Checking the validation file Letsencrypt ignores such certificate errors. Trouble creating a certificate? Use https://community.letsencrypt.org/ to ask.
AGood: Every https result with status 200 and greater 1024 Bytes is compressed (gzip, deflate, br checked).
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
200

Warning: Https + http status 200 + Inline CSS / JavaScript found. Don't use inline CSS / JavaScript. These are compiled and re-used ressources, save these with a long Cache-Control max-age - header.
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
200

Warning: Https result with status 200 found, Html-Content is too big. Should be max. 110 %. May contain inline CSS / JavaScript, too much comments or white space. Re-used ressources - create files with a long Cache-Control max-age header. Remove comments and white space.
AGood: Every https connection via port 443 supports the http/2 protocol via ALPN.
AGood: Some script Elements (type text/javascript) with a src-Attribute have a defer / async - Attribute. So loading and executing these JavaScripts doesn't block parsing and rendering the Html-Output.
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
200

Critical: Some script Elements (type text/javascript) with a src-Attribute don't have a defer / async - Attribute. Loading and executing these JavaScripts blocks parsing and rendering the Html-Output. That's bad if your site is large or the connection is slow / mobile usage. Use "async" if the js file has only functions (so nothing is executed after parsing the file) or is independend. Use "defer" if the order of the scripts is important. All "defer" scripts are executed before the DOMContentLoaded event is fired. Check https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script to see some details.: 1 script elements without defer/async.
AGood: All CSS / JavaScript files are sent compressed (gzip, deflate, br checked). That reduces the content of the files. 15 external CSS / JavaScript files found
AGood: All CSS / JavaScript files are sent with a long Cache-Control header (minimum 7 days). So the browser can re-use these files, no download is required. 15 external CSS / JavaScript files with long Cache-Control max-age found
AGood: All checked attribute values are enclosed in quotation marks (" or ').
AInfo: No img element found, no alt attribute checked
AGood: Domainname is not on the "Specially Designated Nationals And Blocked Persons List" (SDN). That's an US-list of individuals and companies owned or controlled by, or acting for or on behalf of, targeted countries. It also lists individuals, groups, and entities, such as terrorists and narcotics traffickers designated under programs that are not country-specific. Collectively, such individuals and companies are called "Specially Designated Nationals" or "SDNs." Their assets are blocked and U.S. persons are generally prohibited from dealing with them. So if a domain name is on that list, it's impossible to create a Letsencrypt certificate with that domain name. Check the list manual - https://www.treasury.gov/resource-center/sanctions/sdn-list/pages/default.aspx
https://www.szerman.info/ 62.164.217.211
404
2.460 seconds
Warning: 404 needs more then one second
https://62.164.217.211/ 62.164.217.211
404
2.403 seconds
Warning: 404 needs more then one second
ADuration: 309387 milliseconds, 309.387 seconds

 

8. Connections

DomainIPPortCert.ProtocolKeyExchangeStrengthCipherStrengthHashAlgorithmOCSP stapling
Domain/KeyExchangeIP/StrengthPort/CipherCert./StrengthProtocol/HashAlgorithmOCSP stapling
szerman.info
62.164.217.211
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
szerman.info
62.164.217.211
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
SNI required 		Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
SNI required 		Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=szerman.info


2CN=R10, O=Let's Encrypt, C=US


www.szerman.info
62.164.217.211
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

www.szerman.info
62.164.217.211
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
 Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Self signed certificate

1CN=TRAEFIK DEFAULT CERT


pangolin.szerman.info
pangolin.szerman.info
443
ok
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

pangolin.szerman.info
pangolin.szerman.info
443
ok
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
 Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Chain (complete)

1CN=pangolin.szerman.info


2CN=R10, O=Let's Encrypt, C=US


62.164.217.211
62.164.217.211
443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok

62.164.217.211
62.164.217.211
443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes128
128
Sha256
not supported
ok
http/2 via ALPN supported 
Cert sent without SNI 		Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
Cert sent without SNI 		Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Self signed certificate

1CN=TRAEFIK DEFAULT CERT


szerman.info
62.164.217.211
8443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

szerman.info
62.164.217.211
8443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
 Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Self signed certificate

1CN=*, OU=LSIO Server, O=Linuxserver.io, L=Carlsbad, C=US, ST=CA


www.szerman.info
62.164.217.211
8443
Certificate/chain invalid and wrong name
Tls12
ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok

www.szerman.info
62.164.217.211
8443
Certificate/chain invalid and wrong name
Tls12

ECDH Ephermal
255
Aes256
256
Sha384
not supported
ok
http/2 via ALPN supported 
Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
http/2 via ALPN supported
 Tls.1.2
no Tls.1.1
no Tls.1.0
no Ssl3
no Ssl2
Self signed certificate

1CN=*, OU=LSIO Server, O=Linuxserver.io, L=Carlsbad, C=US, ST=CA

 

9. Certificates

1.
1.
CN=szerman.info
12.03.2025
10.06.2025
expires in 78 days		szerman.info - 1 entry
1.
1.
CN=szerman.info
12.03.2025

10.06.2025
expires in 78 days


szerman.info - 1 entry

KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:03BEB169EA08598021BEE2C9A1E5837321AF
Thumbprint:E69B4D4CE3813163F16CF3B55A2F20D73C02A6AD
SHA256 / Certificate:JxCWeTkGPKQAg0C9idbEbNavSP5e1j6Aes2QXzkV+wc=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):ca8624a06b0590e459bc4fdc27231152c8ee5b4c108f2318b138d2982d8f1147
SHA256 hex / Subject Public Key Information (SPKI):ca8624a06b0590e459bc4fdc27231152c8ee5b4c108f2318b138d2982d8f1147 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r10.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024
13.03.2027
expires in 719 days

2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024

13.03.2027
expires in 719 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4BA85293F79A2FA273064BA8048D75D0
Thumbprint:00ABEFD055F9A9C784FFDEABD1DCDD8FED741436
SHA256 / Certificate:nXw/GqatKy7A1c8eJG+NmubLyf0HVa03u5dLHy+2A/M=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):Error find_SubjectPublicKeyInfo_in_Certificate - no result found
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)




3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 3724 days

3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 3724 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




2.
1.
CN=TRAEFIK DEFAULT CERT
12.03.2025
12.03.2026
expires in 353 days		150c63d42873c36fb6eabf2828ac56ea.f925d10b7bccccaa8f50030f59163673.traefik.default - 1 entry
2.
1.
CN=TRAEFIK DEFAULT CERT
12.03.2025

12.03.2026
expires in 353 days


150c63d42873c36fb6eabf2828ac56ea.f925d10b7bccccaa8f50030f59163673.traefik.default - 1 entry

KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4106D27BE611831416DACFB07D7EB150
Thumbprint:8080A12B62E8EB51ADEBD6B4C6AC3739B6AA78D6
SHA256 / Certificate:NISN7WwY77k2oECnN7KxBhQEuIAu2P5k3RRRVpqrKJw=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):98323c9368b7c9b258a11aceefe25239ecd1e6c5e255a34ab3f64250438b1fa1
SHA256 hex / Subject Public Key Information (SPKI):98323c9368b7c9b258a11aceefe25239ecd1e6c5e255a34ab3f64250438b1fa1 (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1)


UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.


3.
1.
CN=pangolin.szerman.info
12.03.2025
10.06.2025
expires in 78 days		pangolin.szerman.info - 1 entry
3.
1.
CN=pangolin.szerman.info
12.03.2025

10.06.2025
expires in 78 days


pangolin.szerman.info - 1 entry

KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:04B4322A2D15C44EC404B0D7FDDBBF708278
Thumbprint:0FCB31F7340A9FD93ACC5B6F34BF3A62687450A2
SHA256 / Certificate:vwJgCKRBBPSkUVCkcpD0VJ+eKCTkcfkh/C6WBdXBwZU=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):d97368857c585b4b6a8a436680e82b7346a29ecacfd68504e22add8a8d18b95b
SHA256 hex / Subject Public Key Information (SPKI):d97368857c585b4b6a8a436680e82b7346a29ecacfd68504e22add8a8d18b95b (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:http://r10.o.lencr.org
OCSP - must staple:no
Certificate Transparency:yes
Enhanced Key Usage:Serverauthentifizierung (1.3.6.1.5.5.7.3.1), Clientauthentifizierung (1.3.6.1.5.5.7.3.2)




2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024
13.03.2027
expires in 719 days

2.
CN=R10, O=Let's Encrypt, C=US
13.03.2024

13.03.2027
expires in 719 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:4BA85293F79A2FA273064BA8048D75D0
Thumbprint:00ABEFD055F9A9C784FFDEABD1DCDD8FED741436
SHA256 / Certificate:nXw/GqatKy7A1c8eJG+NmubLyf0HVa03u5dLHy+2A/M=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):Error find_SubjectPublicKeyInfo_in_Certificate - no result found
SHA256 hex / Subject Public Key Information (SPKI):
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Check unknown. No result 404 / 200
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:Clientauthentifizierung (1.3.6.1.5.5.7.3.2), Serverauthentifizierung (1.3.6.1.5.5.7.3.1)




3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015
04.06.2035
expires in 3724 days

3.
CN=ISRG Root X1, O=Internet Security Research Group, C=US
04.06.2015

04.06.2035
expires in 3724 days




KeyalgorithmRSA encryption (4096 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:008210CFB0D240E3594463E0BB63828B00
Thumbprint:CABD2A79A1076A31F21D253635CB039D4329A5E8
SHA256 / Certificate:lrzsBiZJdvN0YHeazyjFp8/oo8Cq4RqP/O4FwL3fCMY=
SHA256 hex / Cert (DANE * 0 1):96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6
SHA256 hex / PublicKey (DANE * 1 1):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SHA256 hex / Subject Public Key Information (SPKI):0b9fa5a59eed715c26c1020c711b4f6ec42d58b0015e14337a39dad301c5afc3
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:




4.
1.
CN=*, OU=LSIO Server, O=Linuxserver.io, L=Carlsbad, S=CA, C=US
27.02.2025
25.02.2035
expires in 3625 days
4.
1.
CN=*, OU=LSIO Server, O=Linuxserver.io, L=Carlsbad, S=CA, C=US
27.02.2025

25.02.2035
expires in 3625 days




KeyalgorithmRSA encryption (2048 bit)
Signatur:SHA256 With RSA-Encryption
Serial Number:39860F35BBFE9E927834EF20F838737D0CAA10BC
Thumbprint:A7F6CB49120A341EAE6BDF5560BC9C328506C44D
SHA256 / Certificate:2a9QDgT+SaB0NnMpOK2hNhsuvHuQKkVHr2O9JKkl/MM=
SHA256 hex / Cert (DANE * 0 1):e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA256 hex / PublicKey (DANE * 1 1):62204ddc8e20f234339e3cb2a16e276662ee71416ae81f93d6732d68125ac73a
SHA256 hex / Subject Public Key Information (SPKI):62204ddc8e20f234339e3cb2a16e276662ee71416ae81f93d6732d68125ac73a (is buggy, ignore the result)
SPKI checked via https://v1.pwnedkeys.com/spki-hash:Good: Key isn't compromised
OCSP - Url:
OCSP - must staple:no
Certificate Transparency:no
Enhanced Key Usage:


UntrustedRoot: A certificate chain processed, but terminated in a root certificate which is not trusted by the trust provider.


 

10. Last Certificates - Certificate Transparency Log Check

1. Source CertSpotter - active certificates (one check per day)

Issuerlast 7 daysactivenum Certs
CN=E6, O=Let's Encrypt, C=US
0
3
4
CN=E5, O=Let's Encrypt, C=US
0
1
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
9465193204
leaf cert		CN=E5, O=Let's Encrypt, C=US
2025-02-10 12:51:52
2025-05-11 12:51:51
szerman.info - 1 entries


9465013681
leaf cert		CN=E6, O=Let's Encrypt, C=US
2025-02-10 12:28:33
2025-05-11 12:28:32
szerman.info - 1 entries


9464829054
leaf cert		CN=E6, O=Let's Encrypt, C=US
2025-02-10 12:04:45
2025-05-11 12:04:44
szerman.info - 1 entries


9463372366
leaf cert		CN=E6, O=Let's Encrypt, C=US
2025-02-10 08:46:15
2025-05-11 08:46:14
szerman.info - 1 entries


8959273991
leaf cert		CN=E6, O=Let's Encrypt, C=US
2024-12-17 08:32:09
2025-03-17 08:32:08
homepage.szerman.info, szerman.info - 2 entries


 

2. Source crt.sh - old and new certificates, sometimes very slow - only certificates with "not after" > of the last months are listed

No CRT - CT-Log entries found

 

11. Html-Content - Entries

Summary


Subresource Integrity (SRI)
DomainnameHtmlElementrel/property∑ size∑ problems∑ int.∑ ext.∑ Origin poss.∑ SRI ParseErrors∑ SRI valid∑ SRI missing
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F
a

4

0


0
0
0


form

1

0


0
0
0


link
stylesheet
1
8,841 Bytes
0
1
0
0
0
0


link
other
2
16,834 Bytes
2
2
0
0
0
0


meta
other
3

0


0
0
0


script

14
229,111 Bytes
14
14
0
0
0
0

 

Details (currently limited to 500 rows - some problems with spam users)

DomainnameHtml-Elementname/equiv/ property/relhref/src/contentHttpStatusmsgStatus
https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F

a

/auth/reset-password


1
ok















a

https://docs.fossorial.io/Pangolin/overview


1
ok















a

https://github.com/fosrl/pangolin


2
ok















form




1
ok















link
icon
/favicon.ico
200

1
Problems with Content-Type - Header - see details
image/x-icon
X-Content-Type-Options nosniff found

This combination of Media Type "image" and MediaSubType "x-icon" was never defined. Use "image/vnd.microsoft.icon" instead. See https://www.iana.org/assignments/media-types/media-types.xhtml


Cache-Control: public, must-revalidate, max-age=0 - max-age too short.
No Compression - 15086 Bytes








link
preload
/_next/static/chunks/webpack-1eab2bf5725b1483.js
200

1
Problems with Content-Type - Header - see details
application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Compression (gzip): 1748/3511 Bytes






ETag: W/"db7-19580ffb2e0"



link
stylesheet
/_next/static/css/2c69d3a58a2da472.css
200

1
ok
text/css; charset=UTF-8
X-Content-Type-Options nosniff found




Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 8841/43213 Bytes






ETag: W/"a8cd-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-Sa8DKoMDo/mDmQqOwKXIF2skKHXKKZW0yuBa/8BClsk=
sha384-A6+5hXPak/50ZSDOQWXSjJiOIdb0Ywsd3wXN8DwrCTZsJekAhIFkVSrMubDqV+Kh
sha512-WBYY7lSVVLgWhNTY88v3YHAy6qHXMCfYhnGZoRHTbc4/8S7q1v4A7Jz5Xm6T/ERkr9c67VRsvQySlshUdgDzww==

 

<link rel="stylesheet" href="/_next/static/css/2c69d3a58a2da472.css" crossorigin="anonymous" integrity="sha256-Sa8DKoMDo/mDmQqOwKXIF2skKHXKKZW0yuBa/8BClsk=" />



meta
charset
 utf-8


1
ok















meta
next-size-adjust



1
ok















meta
viewport
width=device-width, initial-scale=1


1
ok















script
src
/_next/static/chunks/1517-b2819b2e20968db2.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 50946/201059 Bytes






ETag: W/"31163-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-3+iR8YepdFD/GJZsmppiyeK545sHKN9tSpoYxNJXk/4=
sha384-wAWTCwz/BqNrGyxiAizfh87CoBC3yFa/1fwot0F1Lrl0ta9DxSHXQHhtKtKMOs/o
sha512-rOtx0/i7h5yspyAdWhr1WeUlh19/9be3xaIg6x9bKXTR+jqcKCB6xRLM+RbQyFD13N4qqta2hIfEO8mw7qiLTA==

 

<script src="/_next/static/chunks/1517-b2819b2e20968db2.js" crossorigin="anonymous" integrity="sha256-3+iR8YepdFD/GJZsmppiyeK545sHKN9tSpoYxNJXk/4=" />



script
src
/_next/static/chunks/3501-acc439626c67573a.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 8125/23633 Bytes






ETag: W/"5c51-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-PicsoyR+w9YEGXUG98BNrQnDbcxJyRIHgeKmyVrPM0o=
sha384-ee17Fl/0VHUAaqXjcMB47JX3uUWit9LJ311UfUlz8AHxRlXKK0vhg2wjrqBewq+B
sha512-qgOZyt9k+v3XVjffnLSGZq3oEJzh46fppVk1QqT49vwLRHwuZtJcxKsuVs9GvAQl2lcL991rUp8cm9bWkFPaQQ==

 

<script src="/_next/static/chunks/3501-acc439626c67573a.js" crossorigin="anonymous" integrity="sha256-PicsoyR+w9YEGXUG98BNrQnDbcxJyRIHgeKmyVrPM0o=" />



script
src
/_next/static/chunks/4bd1b696-4d0da9d4b90232c1.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 53057/167095 Bytes






ETag: W/"28cb7-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-9Z78o+03QhQvpOUfY4pF2AtSUUrMfiVZYFpYVnL1pE8=
sha384-s5Ufwc8dcPDza6dszizpecVJe06Kg4WrqEDhgmrhqkXzm4lKfxvW6/3dHN08raSJ
sha512-vKVkvF3ffoEFSU4HONraYnei+QJHbIMAgjbBkus/zh0QJ5yl9opDKmI1+rsCT0zyLxrjlD159fIDdASYRUYwIQ==

 

<script src="/_next/static/chunks/4bd1b696-4d0da9d4b90232c1.js" crossorigin="anonymous" integrity="sha256-9Z78o+03QhQvpOUfY4pF2AtSUUrMfiVZYFpYVnL1pE8=" />



script
src
/_next/static/chunks/6223-e856af895415977c.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 8667/23390 Bytes






ETag: W/"5b5e-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-fhfHHTk5e+bMxQdRGr4zHSY0kR+rTNoVbwEBfLhbYzU=
sha384-GbNM05J0hdvUbjX7PvRjWphnJzyeOSV2TNe8pWIpLhuxOh/8GloAl2T7DwriqL9D
sha512-g/sHFYWcq47tQ0ZEnveyGh9NTlVFlmSE0rK5/HoMqQd33PYxH/TuZ76ZVCMhq+k7O3hrSoWlV1J6RY/iESnAkQ==

 

<script src="/_next/static/chunks/6223-e856af895415977c.js" crossorigin="anonymous" integrity="sha256-fhfHHTk5e+bMxQdRGr4zHSY0kR+rTNoVbwEBfLhbYzU=" />



script
src
/_next/static/chunks/6789-bb3a38e69105cf9c.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 8676/25886 Bytes






ETag: W/"651e-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-LUSYFCpthRIpdnkeNLeFt8vXh3Gvwrs5zHXgkVt6HmA=
sha384-akt60W7Krg/Kd0dR/Iy5liGNeGmSNU0ZjoppgDUhBrIliQTnOFqgTFKRAu3uukZa
sha512-n4GkHV2lhutz+qA41hV02ZJzLGlaqMWQG64r5emAjDdyeDoy8lNtwJCeWuBO0rzAjRAJMOxQ615gST6KKR0q5Q==

 

<script src="/_next/static/chunks/6789-bb3a38e69105cf9c.js" crossorigin="anonymous" integrity="sha256-LUSYFCpthRIpdnkeNLeFt8vXh3Gvwrs5zHXgkVt6HmA=" />



script
src
/_next/static/chunks/7294-eff17d9aad1a3dee.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 20147/57125 Bytes






ETag: W/"df25-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-YMRWeL5rCNup9XOMc4EmctXubbo5TuTUysZlXc3szJY=
sha384-WNkSAnF9Np/ONtxT5+nzB0cNMGg0HbPKQIkKm6l1GUjD4Bxu4t3kMgvjgZFKR203
sha512-2t0k1CDJ3vvxEx1xFkcdMQ4jsbVecNvtrhJvo9CxPp/D1SLgTpQjUOVPhvREq2g32aGJSAFgK/KUIkqlZTmAJA==

 

<script src="/_next/static/chunks/7294-eff17d9aad1a3dee.js" crossorigin="anonymous" integrity="sha256-YMRWeL5rCNup9XOMc4EmctXubbo5TuTUysZlXc3szJY=" />



script
src
/_next/static/chunks/7518-d78920992ac9e887.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 23825/86720 Bytes






ETag: W/"152c0-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-qZBF06kwZ+MI6173WrMogK+03cREZDcybj9P7oK7y6k=
sha384-8OfWduKk1hx73qKpqpRVIeE86HeMDdVBD6CXhV6TltDXXkhujgXO5lGTVvWZJFMm
sha512-Sz7HdLRmsWyGzIX0AiiQ6qn+mEpMAZdh2UI1mUbo30O0+Sy3IzDwbuSWCi1kFzEEPn8jrxYBEVkFi245cNznOg==

 

<script src="/_next/static/chunks/7518-d78920992ac9e887.js" crossorigin="anonymous" integrity="sha256-qZBF06kwZ+MI6173WrMogK+03cREZDcybj9P7oK7y6k=" />



script
src
/_next/static/chunks/7807-958067e620b9b607.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 4236/13817 Bytes






ETag: W/"35f9-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-CL4/TGTr8vpebRH9HcQQvZ9kiEm8/3mvc/3y7yqUKuQ=
sha384-ZiCJoK00Wfo7h/BgtbjBq0ziuwN0QVlkD8Mi2ZAOj5ZFJym2I4Xrf+N1i16C0WLu
sha512-lT9kM9aE6w1i6OyGTAw9ac/ZRmXyNZL2YEb5xpfbRX5cpFHl5oYQHQOa4jguoHFMISvbwaHjNCwXtOHb6F/Tcw==

 

<script src="/_next/static/chunks/7807-958067e620b9b607.js" crossorigin="anonymous" integrity="sha256-CL4/TGTr8vpebRH9HcQQvZ9kiEm8/3mvc/3y7yqUKuQ=" />



script
src
/_next/static/chunks/8173-f7ac518980f2fb20.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 3672/9804 Bytes






ETag: W/"264c-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-ZyBNsHO5YfsK0LsEO+k9BvCJ+yxD2o+RJHkDL0wXXhQ=
sha384-ApAcNps4hAxOiagLqJ82h7EXaqgmFbeAWW4kWWVHP7xcQqcrN97M5+s9ENwOhYDp
sha512-UPz8u2RoUC+P0o1s57CSg5WxFZ96WnZapOpl7C4Uii3TRkKvEQLMRIdgKFehumAVYJW3vwBlxP942WZ3GQoEJQ==

 

<script src="/_next/static/chunks/8173-f7ac518980f2fb20.js" crossorigin="anonymous" integrity="sha256-ZyBNsHO5YfsK0LsEO+k9BvCJ+yxD2o+RJHkDL0wXXhQ=" />



script
src
/_next/static/chunks/app/auth/resource/%5BresourceId%5D/page-1f4f14554b02439e.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 3740/11736 Bytes






ETag: W/"2dd8-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-pfYrruJeyChrlVbFTaMxAweGxAgB/aJPMwc/fvGceXE=
sha384-MG5nJ6jO2kQ7GtJqNPscaW54irSrFbUDCKtOSY3iMR33spZjOtOObsRQMQlS8G2m
sha512-XDgcbU/UrAbPJ8jzLn6C9hHB9V8szfR4bZUW11Y4Uqkholt/DJzhm6/RQPTzvVqi2TrITT/JeIhUh0Fk0K6tvQ==

 

<script src="/_next/static/chunks/app/auth/resource/%5BresourceId%5D/page-1f4f14554b02439e.js" crossorigin="anonymous" integrity="sha256-pfYrruJeyChrlVbFTaMxAweGxAgB/aJPMwc/fvGceXE=" />



script
src
/_next/static/chunks/app/layout-390bb1d83610b4ad.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 2169/5751 Bytes






ETag: W/"1677-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-McUCMuece1ryZyneKCsRH6nIq0l2ysfRQuHCEB8OAv0=
sha384-bnYBL+jpzcLEEgzSvMZb/7L3fGznaI9qXm5sCnE4NBqxQL4saVXdSjHSeFNCDFkK
sha512-FdStlDLGdnkxs+2Azprkqa3YwKpeyH1H2e1BSZE0Q/xG0jrhi8hgEj7OqjV03F/fbOm/eUDZSd/sBPnZa4xFyg==

 

<script src="/_next/static/chunks/app/layout-390bb1d83610b4ad.js" crossorigin="anonymous" integrity="sha256-McUCMuece1ryZyneKCsRH6nIq0l2ysfRQuHCEB8OAv0=" />



script
src
/_next/static/chunks/main-app-2e5788c1099c469f.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
476 Bytes






ETag: W/"1dc-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-e+es2ZD5WAXm22nkJNHjpcrywsogbyzTWVSrkWx9kbY=
sha384-ZDMW17qyCL45NPeNQiGYJ/2EKcMitpb/5ee6/1bvFlPRM5jJMAXODpwuRVn0j2Dg
sha512-i+KTTIzZy5KsIxkC9Z3XbBYnXFjDViFw7LXMg07GVsKf7yoOGg9Bxq2oESfQ75/rZ/s6MFoLSB6rX57bDBfzbQ==

 

<script src="/_next/static/chunks/main-app-2e5788c1099c469f.js" crossorigin="anonymous" integrity="sha256-e+es2ZD5WAXm22nkJNHjpcrywsogbyzTWVSrkWx9kbY=" />



script
src
/_next/static/chunks/polyfills-42372ed130431b0a.js
200

1
Problems with Content-Type - Header - see details
Missing defer / async attribute. application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 39627/112594 Bytes






ETag: W/"1b7d2-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-CXPB1kyIrcjjyVBBDLWLKI9yEY1ZZbeASUON648vloM=
sha384-w1OChgUsMz6Qk5chKcfnqibG8VNLM2FcpIoMlpX/PTNfc9SE68eLEzTKv7bV3aY7
sha512-rUCv+bjASeo6Ap6zeZkK7zhLn8HGeczlp+A2rq56tffjmjvLjPQ7YBXxXKkux3/9K8FhGdxIAVDyObEBksBwKw==

 

<script src="/_next/static/chunks/polyfills-42372ed130431b0a.js" crossorigin="anonymous" integrity="sha256-CXPB1kyIrcjjyVBBDLWLKI9yEY1ZZbeASUON648vloM=" />



script
src
/_next/static/chunks/webpack-1eab2bf5725b1483.js
200

1
Problems with Content-Type - Header - see details
async attribute found application/javascript; charset=UTF-8
X-Content-Type-Options nosniff found

This Combination of MediaType "application" and MediaSubType "javascript" is obsolete. Don't use it. See https://www.iana.org/assignments/media-types/media-types.xhtml to find a correct Combination. Use "text/javascript" instead.


Cache-Control: public, max-age=31536000, immutable - with long duration found.
Compression (gzip): 1748/3511 Bytes






ETag: W/"db7-19580ffb2e0"

local SRI possible, possible hash-values:

 

sha256-zXYvZIMo6cfIlQMserGXxtPqWjSBlqkuX6sC/leqF4A=
sha384-meAeSCKO+skVBZJlW80W6miEiH1+7709HxTA5Xv3p+KX3XMQ2Uz4+1RWGXD1LWRs
sha512-80Fw44s40Qxp+qKEAcoXHyT0saLsbrotTrobD2HEsiSdNzBGF1BCIa+LnAbFbdXNkCjuUKyM/luyH7XsQuKISw==

 

<script src="/_next/static/chunks/webpack-1eab2bf5725b1483.js" crossorigin="anonymous" integrity="sha256-zXYvZIMo6cfIlQMserGXxtPqWjSBlqkuX6sC/leqF4A=" />


 

12. Html-Parsing via https://validator.w3.org/nu/

Url used (first standard-https-result with http status 200): https://pangolin.szerman.info/auth/resource/24?redirect=https%3A%2F%2Fszerman.info%2F

Summary

Good: No non-document-errors
3 errors
1 warnings

TypeMessagenum found
1.errorThe aria-describedby attribute must point to an element in the same document.2
2.errorThe aria-labelledby attribute must point to an element in the same document.1
3.warningConsider adding a lang attribute to the html start tag to declare the language of this document.1

Details


TypeMessage + Sample
1errorThe aria-labelledby attribute must point to an element in the same document.

From line 1, column 2829 to line 1, column 3161

rizontal"><div data-state="active" data-orientation="horizontal" role="tabpanel" aria-labelledby="radix-:R57rrqtdb:-trigger-sso" id="radix-:R57rrqtdb:-content-sso" tabindex="0" class="ring-offset-background focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 mt-0" style="animation-duration:0s"><div c
2errorThe aria-describedby attribute must point to an element in the same document.

From line 1, column 3391 to line 1, column 3929

il</label><input class="flex h-9 w-full rounded-md border-2 border-input bg-card px-3 py-2 text-base md:text-sm ring-offset-background file:border-0 file:bg-transparent file:text-base md:file:text-sm file:font-medium file:text-foreground placeholder:text-muted-foreground focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 disabled:cursor-not-allowed disabled:opacity-50" id=":R16d7rrqtdb:-form-item" aria-describedby=":R16d7rrqtdb:-form-item-description" aria-invalid="false" name="email" value=""/></div>
3errorThe aria-describedby attribute must point to an element in the same document.

From line 1, column 4156 to line 1, column 4713

relative"><input type="password" class="flex h-9 w-full rounded-md border-2 border-input bg-card px-3 py-2 text-base md:text-sm ring-offset-background file:border-0 file:bg-transparent file:text-base md:file:text-sm file:font-medium file:text-foreground placeholder:text-muted-foreground focus-visible:outline-none focus-visible:ring-2 focus-visible:ring-ring focus-visible:ring-offset-2 disabled:cursor-not-allowed disabled:opacity-50" id=":R66d7rrqtdb:-form-item" aria-describedby=":R66d7rrqtdb:-form-item-description" aria-invalid="false" name="password" value=""/><div c
4warningConsider adding a lang attribute to the html start tag to declare the language of this document.

From line 1, column 16 to line 1, column 21

TYPE html><html><head>

 

13. Nameserver - IP-Adresses

Required Root-climbing DNS-Queries to find ip addresses of all Name Servers: ns11.infomaniak.ch, ns12.infomaniak.ch

 

QNr.DomainTypeNS used
1
ch
NS
l.root-servers.net (2001:500:9f::42)

Answer: a.nic.ch, b.nic.ch, d.nic.ch, e.nic.ch, f.nic.ch
2
ns11.infomaniak.ch
NS
a.nic.ch (2001:620:0:ff::56)

Answer: ns1.infomaniak.ch, ns2.infomaniak.ch

Answer: ns1.infomaniak.ch
2001:1600:0:aaaa::a, 84.16.66.66

Answer: ns2.infomaniak.ch
2001:1600:0:aaaa::b, 84.16.67.66
3
ns12.infomaniak.ch
NS
a.nic.ch (2001:620:0:ff::56)

Answer: ns1.infomaniak.ch, ns2.infomaniak.ch

Answer: ns1.infomaniak.ch
2001:1600:0:aaaa::a, 84.16.66.66

Answer: ns2.infomaniak.ch
2001:1600:0:aaaa::b, 84.16.67.66
4
ns11.infomaniak.ch: 93.88.255.151
A
ns1.infomaniak.ch (2001:1600:0:aaaa::a)
5
ns11.infomaniak.ch: 2001:1600:0:aaaa::7
AAAA
ns1.infomaniak.ch (2001:1600:0:aaaa::a)
6
ns12.infomaniak.ch: 93.88.255.152
A
ns1.infomaniak.ch (2001:1600:0:aaaa::a)
7
ns12.infomaniak.ch: 2001:1600:0:aaaa::8
AAAA
ns1.infomaniak.ch (2001:1600:0:aaaa::a)

 

14. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.szerman.info
32773
issue
letsencrypt.org
1
0
szerman.info
32773
issue
letsencrypt.org
1
0
info
0

no CAA entry found
1
0

 

15. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
szerman.info

ok
1
0
www.szerman.info


1
0
_acme-challenge.szerman.info


1
0
_acme-challenge.www.szerman.info


1
0
_acme-challenge.szerman.info.szerman.info


1
0
_acme-challenge.www.szerman.info.szerman.info


1
0
_acme-challenge.www.szerman.info.www.szerman.info


1
0

 

16. DomainService - Entries

TypeDomainPrefValueDNS-errornum AnswersStatusDescription
MX

szerman.info
5
mta-gw.infomaniak.ch
01ok

A


83.166.143.58
02ok

A


83.166.143.57
02ok

AAAA


2001:1600:0:aaaa::1:3
02ok

AAAA


2001:1600:0:aaaa::1:4
02ok

CNAME


00ok
_mta-sts
CNAME
_mta-sts.szerman.info

szerman.info
ok
_dmarc
TXT
_dmarc.szerman.info

v=DMARC1; p=none; ruf=mailto:david@szerman.info; fo=1; pct=100; adkim=s; aspf=s
ok

				 
			

				 
			
17. Cipher Suites
Summary
DomainIPPortnum CipherstimeStd.ProtocolForward Secrecy
szerman.info
62.164.217.211
443
5 Ciphers40.47 sec
0 without, 5 FS
100.00 %
szerman.info
62.164.217.211
8443
6 Ciphers42.55 secPlesk Administration (https)
0 without, 6 FS
100.00 %
www.szerman.info
62.164.217.211
443
5 Ciphers39.76 sec
0 without, 5 FS
100.00 %
www.szerman.info
62.164.217.211
8443
6 Ciphers42.79 secPlesk Administration (https)
0 without, 6 FS
100.00 %
Complete

4
22 Ciphers
5.50 Ciphers/Check		165.57 sec41.39 sec/Check
0 without, 22 FS
100.00 %

Details
DomainIPPortCipher (OpenSsl / IANA)
szerman.info
62.164.217.211
443
ECDHE-RSA-CHACHA20-POLY1305
 (Secure)
TLSv1.2
0xCC,0xA8
 FS
5 Ciphers, 

40.47 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
 (Secure)
TLSv1.2
0xC0,0x30
 FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
 (Secure)
TLSv1.2
0xC0,0x2F
 FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




ECDHE-RSA-AES256-SHA
 (Weak)
TLSv1
0xC0,0x14
 FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

ECDH
RSA
AES(256)
SHA1




ECDHE-RSA-AES128-SHA
 (Weak)
TLSv1
0xC0,0x13
 FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

ECDH
RSA
AES(128)
SHA1



8443
ECDHE-RSA-CHACHA20-POLY1305
 (Secure)
TLSv1.2
0xCC,0xA8
 FS
6 Ciphers, 

42.55 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
 (Secure)
TLSv1.2
0xC0,0x30
 FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




DHE-RSA-CHACHA20-POLY1305
 (Secure)
TLSv1.2
0xCC,0xAA
 FS

TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256

DH
RSA
CHACHA20/POLY1305(256)
AEAD




DHE-RSA-AES256-GCM-SHA384
 (Secure)
TLSv1.2
0x00,0x9F
 FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

DH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
 (Secure)
TLSv1.2
0xC0,0x2F
 FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




DHE-RSA-AES128-GCM-SHA256
 (Secure)
TLSv1.2
0x00,0x9E
 FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

DH
RSA
AESGCM(128)
AEAD

www.szerman.info
62.164.217.211
443
ECDHE-RSA-CHACHA20-POLY1305
 (Secure)
TLSv1.2
0xCC,0xA8
 FS
5 Ciphers, 

39.76 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
 (Secure)
TLSv1.2
0xC0,0x30
 FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
 (Secure)
TLSv1.2
0xC0,0x2F
 FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




ECDHE-RSA-AES256-SHA
 (Weak)
TLSv1
0xC0,0x14
 FS

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA

ECDH
RSA
AES(256)
SHA1




ECDHE-RSA-AES128-SHA
 (Weak)
TLSv1
0xC0,0x13
 FS

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

ECDH
RSA
AES(128)
SHA1



8443
ECDHE-RSA-CHACHA20-POLY1305
 (Secure)
TLSv1.2
0xCC,0xA8
 FS
6 Ciphers, 

42.79 sec
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256

ECDH
RSA
CHACHA20/POLY1305(256)
AEAD




ECDHE-RSA-AES256-GCM-SHA384
 (Secure)
TLSv1.2
0xC0,0x30
 FS

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

ECDH
RSA
AESGCM(256)
AEAD




DHE-RSA-CHACHA20-POLY1305
 (Secure)
TLSv1.2
0xCC,0xAA
 FS

TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256

DH
RSA
CHACHA20/POLY1305(256)
AEAD




DHE-RSA-AES256-GCM-SHA384
 (Secure)
TLSv1.2
0x00,0x9F
 FS

TLS_DHE_RSA_WITH_AES_256_GCM_SHA384

DH
RSA
AESGCM(256)
AEAD




ECDHE-RSA-AES128-GCM-SHA256
 (Secure)
TLSv1.2
0xC0,0x2F
 FS

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

ECDH
RSA
AESGCM(128)
AEAD




DHE-RSA-AES128-GCM-SHA256
 (Secure)
TLSv1.2
0x00,0x9E
 FS

TLS_DHE_RSA_WITH_AES_128_GCM_SHA256

DH
RSA
AESGCM(128)
AEAD


				 
			
18. Portchecks
DomainIPPortDescriptionResultAnswer
szerman.info
62.164.217.211
21
FTP



szerman.info
62.164.217.211
21
FTP



szerman.info
62.164.217.211
22
SSH
open
SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u4  

szerman.info
62.164.217.211
22
SSH
open
SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u4  
Bad: SSH without DNS SSHFP Record found
szerman.info
62.164.217.211
25
SMTP



szerman.info
62.164.217.211
25
SMTP



szerman.info
62.164.217.211
53
DNS



szerman.info
62.164.217.211
53
DNS



szerman.info
62.164.217.211
110
POP3



szerman.info
62.164.217.211
110
POP3



szerman.info
62.164.217.211
143
IMAP



szerman.info
62.164.217.211
143
IMAP



szerman.info
62.164.217.211
465
SMTP (encrypted)



szerman.info
62.164.217.211
465
SMTP (encrypted)



szerman.info
62.164.217.211
587
SMTP (encrypted, submission)



szerman.info
62.164.217.211
587
SMTP (encrypted, submission)



szerman.info
62.164.217.211
993
IMAP (encrypted)



szerman.info
62.164.217.211
993
IMAP (encrypted)



szerman.info
62.164.217.211
995
POP3 (encrypted)



szerman.info
62.164.217.211
995
POP3 (encrypted)



szerman.info
62.164.217.211
1433
MS SQL



szerman.info
62.164.217.211
1433
MS SQL



szerman.info
62.164.217.211
2082
cPanel (http)



szerman.info
62.164.217.211
2082
cPanel (http)



szerman.info
62.164.217.211
2083
cPanel (https)



szerman.info
62.164.217.211
2083
cPanel (https)



szerman.info
62.164.217.211
2086
WHM (http)



szerman.info
62.164.217.211
2086
WHM (http)



szerman.info
62.164.217.211
2087
WHM (https)



szerman.info
62.164.217.211
2087
WHM (https)



szerman.info
62.164.217.211
2089
cPanel Licensing



szerman.info
62.164.217.211
2089
cPanel Licensing



szerman.info
62.164.217.211
2095
cPanel Webmail (http)



szerman.info
62.164.217.211
2095
cPanel Webmail (http)



szerman.info
62.164.217.211
2096
cPanel Webmail (https)



szerman.info
62.164.217.211
2096
cPanel Webmail (https)



szerman.info
62.164.217.211
2222
DirectAdmin (http)



szerman.info
62.164.217.211
2222
DirectAdmin (http)



szerman.info
62.164.217.211
2222
DirectAdmin (https)



szerman.info
62.164.217.211
2222
DirectAdmin (https)



szerman.info
62.164.217.211
3306
mySql



szerman.info
62.164.217.211
3306
mySql



szerman.info
62.164.217.211
5224
Plesk Licensing



szerman.info
62.164.217.211
5224
Plesk Licensing



szerman.info
62.164.217.211
5432
PostgreSQL



szerman.info
62.164.217.211
5432
PostgreSQL



szerman.info
62.164.217.211
8080
Ookla Speedtest (http)



szerman.info
62.164.217.211
8080
Ookla Speedtest (http)



szerman.info
62.164.217.211
8080
Ookla Speedtest (https)



szerman.info
62.164.217.211
8080
Ookla Speedtest (https)



szerman.info
62.164.217.211
8083
VestaCP http



szerman.info
62.164.217.211
8083
VestaCP http



szerman.info
62.164.217.211
8083
VestaCP https



szerman.info
62.164.217.211
8083
VestaCP https



szerman.info
62.164.217.211
8443
Plesk Administration (https)
open
https://62.164.217.211:8443/

Http-Status: 302
Certificate is invalid
Redirect: https://szerman.info/admin/login
szerman.info
62.164.217.211
8443
Plesk Administration (https)
open
https://62.164.217.211:8443/

Http-Status: 302
Certificate is invalid
Redirect: https://szerman.info/admin/login
szerman.info
62.164.217.211
8447
Plesk Installer + Updates



szerman.info
62.164.217.211
8447
Plesk Installer + Updates



szerman.info
62.164.217.211
8880
Plesk Administration (http)



szerman.info
62.164.217.211
8880
Plesk Administration (http)



szerman.info
62.164.217.211
10000
Webmin (http)



szerman.info
62.164.217.211
10000
Webmin (http)



szerman.info
62.164.217.211
10000
Webmin (https)



szerman.info
62.164.217.211
10000
Webmin (https)



www.szerman.info
62.164.217.211
21
FTP



www.szerman.info
62.164.217.211
21
FTP



www.szerman.info
62.164.217.211
22
SSH
open
SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u4  

www.szerman.info
62.164.217.211
22
SSH
open
SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u4  
Bad: SSH without DNS SSHFP Record found
www.szerman.info
62.164.217.211
25
SMTP



www.szerman.info
62.164.217.211
25
SMTP



www.szerman.info
62.164.217.211
53
DNS



www.szerman.info
62.164.217.211
53
DNS



www.szerman.info
62.164.217.211
110
POP3



www.szerman.info
62.164.217.211
110
POP3



www.szerman.info
62.164.217.211
143
IMAP



www.szerman.info
62.164.217.211
143
IMAP



www.szerman.info
62.164.217.211
465
SMTP (encrypted)



www.szerman.info
62.164.217.211
465
SMTP (encrypted)



www.szerman.info
62.164.217.211
587
SMTP (encrypted, submission)



www.szerman.info
62.164.217.211
587
SMTP (encrypted, submission)



www.szerman.info
62.164.217.211
993
IMAP (encrypted)



www.szerman.info
62.164.217.211
993
IMAP (encrypted)



www.szerman.info
62.164.217.211
995
POP3 (encrypted)



www.szerman.info
62.164.217.211
995
POP3 (encrypted)



www.szerman.info
62.164.217.211
1433
MS SQL



www.szerman.info
62.164.217.211
1433
MS SQL



www.szerman.info
62.164.217.211
2082
cPanel (http)



www.szerman.info
62.164.217.211
2082
cPanel (http)



www.szerman.info
62.164.217.211
2083
cPanel (https)



www.szerman.info
62.164.217.211
2083
cPanel (https)



www.szerman.info
62.164.217.211
2086
WHM (http)



www.szerman.info
62.164.217.211
2086
WHM (http)



www.szerman.info
62.164.217.211
2087
WHM (https)



www.szerman.info
62.164.217.211
2087
WHM (https)



www.szerman.info
62.164.217.211
2089
cPanel Licensing



www.szerman.info
62.164.217.211
2089
cPanel Licensing



www.szerman.info
62.164.217.211
2095
cPanel Webmail (http)



www.szerman.info
62.164.217.211
2095
cPanel Webmail (http)



www.szerman.info
62.164.217.211
2096
cPanel Webmail (https)



www.szerman.info
62.164.217.211
2096
cPanel Webmail (https)



www.szerman.info
62.164.217.211
2222
DirectAdmin (http)



www.szerman.info
62.164.217.211
2222
DirectAdmin (http)



www.szerman.info
62.164.217.211
2222
DirectAdmin (https)



www.szerman.info
62.164.217.211
2222
DirectAdmin (https)



www.szerman.info
62.164.217.211
3306
mySql



www.szerman.info
62.164.217.211
3306
mySql



www.szerman.info
62.164.217.211
5224
Plesk Licensing



www.szerman.info
62.164.217.211
5224
Plesk Licensing



www.szerman.info
62.164.217.211
5432
PostgreSQL



www.szerman.info
62.164.217.211
5432
PostgreSQL



www.szerman.info
62.164.217.211
8080
Ookla Speedtest (http)



www.szerman.info
62.164.217.211
8080
Ookla Speedtest (http)



www.szerman.info
62.164.217.211
8080
Ookla Speedtest (https)



www.szerman.info
62.164.217.211
8080
Ookla Speedtest (https)



www.szerman.info
62.164.217.211
8083
VestaCP http



www.szerman.info
62.164.217.211
8083
VestaCP http



www.szerman.info
62.164.217.211
8083
VestaCP https



www.szerman.info
62.164.217.211
8083
VestaCP https



www.szerman.info
62.164.217.211
8443
Plesk Administration (https)
open
https://62.164.217.211:8443/

Http-Status: 302
Certificate is invalid
Redirect: https://www.szerman.info/admin/login
www.szerman.info
62.164.217.211
8443
Plesk Administration (https)
open
https://62.164.217.211:8443/

Http-Status: 302
Certificate is invalid
Redirect: https://www.szerman.info/admin/login
www.szerman.info
62.164.217.211
8447
Plesk Installer + Updates



www.szerman.info
62.164.217.211
8447
Plesk Installer + Updates



www.szerman.info
62.164.217.211
8880
Plesk Administration (http)



www.szerman.info
62.164.217.211
8880
Plesk Administration (http)



www.szerman.info
62.164.217.211
10000
Webmin (http)



www.szerman.info
62.164.217.211
10000
Webmin (http)



www.szerman.info
62.164.217.211
10000
Webmin (https)



www.szerman.info
62.164.217.211
10000
Webmin (https)




				 
			

				 
			

Permalink: https://check-your-website.server-daten.de/?i=2824c301-0670-4e2d-9bbe-dfec2d9d5b34

				 
			


Last Result: https://check-your-website.server-daten.de/?q=szerman.info - 2025-03-12 11:35:08

				 
			
Do you like this page? Support this tool, add a link on your page:

				 
			
<a href="https://check-your-website.server-daten.de/?q=szerman.info" target="_blank">Check this Site: szerman.info</a>

				 
			

				 
			


Do you really want to support this project? Donate: Check-your-website, IBAN DE98 1001 0010 0575 2211 07, SWIFT/BIC PBNKDEFF, Euro

				 
			
QR-Code of this page - https://check-your-website.server-daten.de/?d=szerman.info

				 
			

				 
			



Jürgen Auer • Friedenstr. 37 • 10249 Berlin • +49(0)30 420 200 60 • info@sql-und-xml.de • 
USt-IdNr.: DE221734518

				 
			


Errors, ideas, questions? Use the 
Contact form • A project using

Server-Daten - Web Database solutions