Shortcuts: 1. Basic DNS | 2. Url-Checks | 3. Comments | 4. Connections | 5. Certificates | 6. CT-Logs | 7. Html-Content | 8. CAA | 9. TXT |


Q

http sent over port 443

Checked:
14.05.2019 16:10:08


Older results

1. Basic DNS and Nameserver Checks

HostTIP-Addressis auth.∑ Queries∑ Timeout
uhl-tools.de
A
195.128.103.127
yes
2
0

AAAA

yes


www.uhl-tools.de
C
uhl-tools.de
yes
1
0

A
195.128.103.127
yes



Zone (*)DNSSEC - Informations (beta)
(root)
1 DS RR published

Status: Valid because published

2 DNSKEY RR found

Public Key with Algorithm 8, KeyTag 20326, Flags 257 (SEP = Secure Entry Point)

Public Key with Algorithm 8, KeyTag 25266, Flags 256

1 RRSIG RR to validate DNSKEY RR found

Algorithm: 8, 0 Labels, original TTL: 172800 sec, Signature-expiration: 01.06.2019, 00:00:00, Signature-Inception: 11.05.2019, 00:00:00, KeyTag 20326, Signer-Name: (root)

Status: Good - Algorithmus 8 and DNSKEY with KeyTag 20326 used to validate the DNSKEY RRSet

Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 20326, DigestType 2 and Digest "4G1EuAuPHTmpXAsNfGXQhFjogECbvGg0VxBCN8f47I0=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone
de
1 DS RR in the parent zone found

1 RRSIG RR to validate DS RR found

Algorithm: 8, 1 Labels, original TTL: 86400 sec, Signature-expiration: 27.05.2019, 05:00:00, Signature-Inception: 14.05.2019, 04:00:00, KeyTag 25266, Signer-Name: (root)

Status: Good - Algorithmus 8 and DNSKEY with KeyTag 25266 used to validate the DS RRSet in the parent zone

2 DNSKEY RR found

Public Key with Algorithm 8, KeyTag 26298, Flags 256

Public Key with Algorithm 8, KeyTag 39227, Flags 257 (SEP = Secure Entry Point)

1 RRSIG RR to validate DNSKEY RR found

Algorithm: 8, 1 Labels, original TTL: 7200 sec, Signature-expiration: 30.05.2019, 12:00:00, Signature-Inception: 09.05.2019, 12:00:00, KeyTag 39227, Signer-Name: de

Status: Good - Algorithmus 8 and DNSKEY with KeyTag 39227 used to validate the DNSKEY RRSet

Status: Valid Chain of trust. Parent-DS with Algorithm 8, KeyTag 39227, DigestType 2 and Digest "qrcwg7nvcOSl6UdppBisEuiH/DwIde8gbDRR3EC2xPo=" validates local Key with the same values, Key ist Secure Entry Point (SEP) of the zone
uhl-tools.de
0 DS RR in the parent zone found

DS-Query in the parent zone has a valid NSEC3 RR as result with the hashed domain name between the hashed NSEC3-owner and the hashed NextOwner. So the parent zone confirmes the non-existence of a DS RR.

0 DNSKEY RR found


www.uhl-tools.de
0 DS RR in the parent zone found


DomainNameserverNS-IP
uhl-tools.de
  root-dns.netcup.net
46.38.225.225

T 
2a03:4000:0:1::e1e1

  second-dns.netcup.net
37.221.199.199

 
2a03:4000:2:24b::c7c7

  third-dns.netcup.net
188.68.63.68

 
2a03:4001:0:106::3f44
de
  a.nic.de / ns-2.de.de8.bind


  f.nic.de / ns-1.de.de1.bind


  l.de.net / ns-2.de.fr1.bind


  n.de.net / s3.amx


  s.de.net / ns-2.de.de9.bind


  z.nic.de / ns-1.de.de8.bind



SOA - records (beta)

Domain:de
Primary:f.nic.de
Mail:its.denic.de
Serial:2019051461
Refresh:7200
Retry:7200
Expire:3600000
TTL:7200
num Entries:6


Domain:uhl-tools.de
Primary:root-dns.netcup.net
Mail:dnsadmin.netcup.net
Serial:2019051418
Refresh:28800
Retry:7200
Expire:1209600
TTL:86400
num Entries:4


Domain:uhl-tools.de
Primary:root-dns.netcup.net
Mail:dnsadmin.netcup.net
Serial:2019051422
Refresh:28800
Retry:7200
Expire:1209600
TTL:900
num Entries:2


2. Url-Checks


show header:
Domainname Http-StatusredirectSec.G
• http://uhl-tools.de/
195.128.103.127
403

0.047
M
Forbidden
Date: Tue, 14 May 2019 14:10:27 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 287
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.uhl-tools.de/
195.128.103.127
403

0.043
M
Forbidden
Date: Tue, 14 May 2019 14:10:27 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 291
Connection: close
Content-Type: text/html; charset=iso-8859-1

• https://uhl-tools.de/
195.128.103.127
-4

0.073
W
SendFailure - The underlying connection was closed: An unexpected error occurred on a send. The handshake failed due to an unexpected packet format.

• https://www.uhl-tools.de/
195.128.103.127
-4

0.074
W
SendFailure - The underlying connection was closed: An unexpected error occurred on a send. The handshake failed due to an unexpected packet format.

• http://uhl-tools.de:443/
195.128.103.127
200

0.050
Q
Visible Content: Index of / Name Last modified Size Description froxlor/ 2018-11-27 18:41 -   Apache/2.4.18 (Ubuntu) Server at uhl-tools.de Port 80
Date: Tue, 14 May 2019 14:10:28 GMT
Server: Apache/2.4.18 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 750
Connection: close
Content-Type: text/html;charset=UTF-8

• http://www.uhl-tools.de:443/
195.128.103.127
200

0.043
Q
Visible Content: Index of / Name Last modified Size Description froxlor/ 2018-11-27 18:41 -   Apache/2.4.18 (Ubuntu) Server at www.uhl-tools.de Port 80
Date: Tue, 14 May 2019 14:10:28 GMT
Server: Apache/2.4.18 (Ubuntu)
Vary: Accept-Encoding
Content-Length: 754
Connection: close
Content-Type: text/html;charset=UTF-8

• http://uhl-tools.de/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
195.128.103.127
404

0.043
A
Not Found
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server. Apache/2.4.18 (Ubuntu) Server at uhl-tools.de Port 80
Date: Tue, 14 May 2019 14:10:27 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 345
Connection: close
Content-Type: text/html; charset=iso-8859-1

• http://www.uhl-tools.de/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
195.128.103.127
404

0.043
A
Not Found
Visible Content: Not Found The requested URL /.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de was not found on this server. Apache/2.4.18 (Ubuntu) Server at www.uhl-tools.de Port 80
Date: Tue, 14 May 2019 14:10:27 GMT
Server: Apache/2.4.18 (Ubuntu)
Content-Length: 349
Connection: close
Content-Type: text/html; charset=iso-8859-1

3. Comments

Aname "uhl-tools.de" is domain, public suffix is "de", top-level-domain-type is "country-code", Country is Germany, tld-manager is "DENIC eG"
Agood: All ip addresses are public addresses
Agood: No asked Authoritative Name Server had a timeout
AGood: All urls with http status 200/404 have a complete Content-Type header (MediaType / MediaSubType + correct charset)
CError - more then one version with Http-Status 200
Hfatal error: No https - result with http-status 200, no encryption
Hfatal error: http result with http-status 200, no encryption
Mhttp://uhl-tools.de/ 195.128.103.127
403

Misconfiguration - main pages should never send http status 400 - 499
Mhttp://www.uhl-tools.de/ 195.128.103.127
403

Misconfiguration - main pages should never send http status 400 - 499
Qhttp://uhl-tools.de:443/ 195.128.103.127
200

Misconfiguration: http sent over port 443. Wrong port forwarding port 443 to port 80 or wrong vHost definition.
Qhttp://www.uhl-tools.de:443/ 195.128.103.127
200

Misconfiguration: http sent over port 443. Wrong port forwarding port 443 to port 80 or wrong vHost definition.
AGood: Nameserver supports TCP connections: 6 good Nameserver
XNameserver Timeout checking Echo Capitalization: root-dns.netcup.net / 2a03:4000:0:1::e1e1
AGood: Nameserver supports EDNS with max. 512 Byte Udp payload, message is smaller: 6 good Nameserver
AGood: Nameserver has passed 10 EDNS-Checks (OP100, FLAGS, V1, V1OP100, V1FLAGS, DNSSEC, V1DNSSEC, NSID, COOKIE, CLIENTSUBNET): 6 good Nameserver
XFatal error: Nameservers mit different SOA Serial Numbers
Warning: No CAA entry with issue/issuewild found, every CAA can create a certificate
ADuration: 27130 milliseconds, 27.130 seconds


4. Connections

No connection informations found. Perhaps only http - connections.


5. Certificates

No certificate informations found. Perhaps only http - connections.


6. Last Certificates - Certificate Transparency Log Check (BETA)

1. Source CertSpotter - active certificates

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0
1
1

CertSpotter-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
909184803
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-05-13 09:43:24
2019-08-11 09:43:24
uhl-tools.de
1 entries



2. Source crt.sh - old and new certificates, sometimes very slow.

Issuerlast 7 daysactivenum Certs
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
0
1
1

CRT-IdIssuernot beforenot afterDomain namesLE-Duplicatenext LE
1466978769
CN=Let's Encrypt Authority X3, O=Let's Encrypt, C=US
2019-05-13 07:43:24
2019-08-11 07:43:24
uhl-tools.de
1 entries



7. Html-Content - Entries (BETA - mixed content and other checks)

No Html-Content entries found. Only checked if https + status 200/401/403/404


8. CAA - Entries

DomainnameflagNameValue∑ Queries∑ Timeout
www.uhl-tools.de



1
0
uhl-tools.de
0

no CAA entry found
1
0
de
0

no CAA entry found
1
0


9. TXT - Entries

DomainnameTXT EntryStatus∑ Queries∑ Timeout
uhl-tools.de

ok
1
0
www.uhl-tools.de


1
0
_acme-challenge.uhl-tools.de
Fw6TBLvSAgqs3WicfP0uRf8Co4JE_a_mFc7Um6DGWZU
looks good
1
0
_acme-challenge.www.uhl-tools.de

Name Error - The domain name does not exist
1
0
_acme-challenge.uhl-tools.de.uhl-tools.de
Fw6TBLvSAgqs3WicfP0uRf8Co4JE_a_mFc7Um6DGWZU
perhaps wrong
1
0
_acme-challenge.www.uhl-tools.de.uhl-tools.de

Name Error - The domain name does not exist
1
0
_acme-challenge.www.uhl-tools.de.www.uhl-tools.de

Name Error - The domain name does not exist
1
0



Permalink: https://check-your-website.server-daten.de/?i=584094d1-c2f7-4443-ae22-8298189ff2b4


Last Result: https://check-your-website.server-daten.de/?q=uhl-tools.de - 2019-05-14 16:10:08