DNSSEC offered (OK) Zone transfer (AXFR) not allowed (OK) CAA Record offered (OK) SPF Record offered (OK) DMARC Record offered (OK) MTA-STS offered (OK) TLSRPT Record offered (OK) Raw DNS Records
| Name | TTL | Type | Data |
| htmlyse.com | 1800 | SOA | dara.ns.cloudflare.com dns @ cloudflare.com 2396749206 10000 2400 604800 1800 |
| htmlyse.com | 86400 | NS | dara.ns.cloudflare.com, IPv4: 108.162.192.91, IPv6: 2803:f800:50:0:0:0:6ca2:c05b |
| htmlyse.com | 86400 | NS | tim.ns.cloudflare.com, IPv4: 172.64.33.145, IPv6: 2803:f800:50:0:0:0:6ca2:c191 |
| htmlyse.com | 300 | A | 87.106.157.195 |
| htmlyse.com | 300 | CAA | 0 issue comodoca.com |
| htmlyse.com | 300 | CAA | 0 issue digicert.com; cansignhttpexchanges=yes |
| htmlyse.com | 300 | CAA | 0 issue globalsign.com |
| htmlyse.com | 300 | CAA | 0 issue letsencrypt.org |
| htmlyse.com | 300 | CAA | 0 issue pki.goog; cansignhttpexchanges=yes |
| htmlyse.com | 300 | CAA | 0 issue ssl.com |
| htmlyse.com | 300 | CAA | 0 issuewild comodoca.com |
| htmlyse.com | 300 | CAA | 0 issuewild digicert.com; cansignhttpexchanges=yes |
| htmlyse.com | 300 | CAA | 0 issuewild letsencrypt.org |
| htmlyse.com | 300 | CAA | 0 issuewild pki.goog; cansignhttpexchanges=yes |
| htmlyse.com | 300 | CAA | 0 issuewild ssl.com |
| htmlyse.com | 300 | MX | 10 mx00.kundenserver.de |
| htmlyse.com | 300 | MX | 10 mx01.kundenserver.de |
| htmlyse.com | 300 | TXT | v=spf1 include:_spf.perfora.net include:_spf.kundenserver.de a:www.htmlyse.com -all |
| _dmarc.htmlyse.com | 300 | TXT | v=DMARC1;p=reject;rua= mailto : admin @ htmlyse.com; |
| _mta-sts.htmlyse.com | 300 | TXT | v=STSv1; id=68746D6C79736568 |
| _smtp._tls.htmlyse.com | 300 | TXT | v=TLSRPTv1; rua= mailto : admin @ htmlyse.com |
| mta-sts.htmlyse.com | 300 | A | 87.106.157.195 |
| www.htmlyse.com | 300 | A | 87.106.157.195 |
A record via supplied IP "87.106.157.195" rDNS (87.106.157.195): www.htmlyse.com. Service detected: HTTP SSL/TLS protocols SSLv2 not offered (OK) SSLv3 not offered (OK) TLS 1 not offered TLS 1.1 not offered TLS 1.2 offered (OK) TLS 1.3 offered (OK): final NPN/SPDY h2, http/1.1 (advertised) ALPN/HTTP2 h2, http/1.1 (offered) SSL/TLS server implementation bugs No bugs found. Cipher categories NULL ciphers (no encryption) not offered (OK) -- NULL:eNULL Anonymous NULL Ciphers (no authentication) not offered (OK) -- aNULL:ADH Export ciphers (w/o ADH+NULL) not offered (OK) -- EXPORT:!ADH:!NULL LOW: 64 Bit + DES encryption (w/o export) not offered (OK) -- LOW:DES:!ADH:!EXP:!NULL Weak 128 Bit ciphers (SEED, IDEA, RC[2,4]) not offered (OK) -- MEDIUM:!aNULL:!AES:!CAMELLIA:!ARIA:!CHACHA20:!3DES Triple DES Ciphers (Medium) not offered (OK) -- 3DES:!aNULL:!ADH High encryption (AES+Camellia, no AEAD) not offered -- HIGH:!NULL:!aNULL:!DES:!3DES:!AESGCM:!CHACHA20:!AESGCM:!CamelliaGCM:!AESCCM8:!AESCCM Strong encryption (AEAD ciphers) offered (OK) -- AESGCM:CHACHA20:AESGCM:CamelliaGCM:AESCCM8:AESCCM Robust (perfect) forward secrecy, (P)FS -- omitting Null Authentication/Encryption, 3DES, RC4 PFS is offered (OK) TLS_AES_256_GCM_SHA384 TLS_CHACHA20_POLY1305_SHA256 ECDHE-ECDSA-CHACHA20-POLY1305 TLS_AES_128_GCM_SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-ECDSA-AES128-GCM-SHA256 Elliptic curves offered: prime256v1 secp384r1 secp521r1 X25519 X448 Server preferences Has server cipher order? yes (OK) Negotiated protocol TLSv1.3 Negotiated cipher TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Cipher order TLSv1.2: ECDHE-ECDSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-ECDSA-CHACHA20-POLY1305 TLSv1.3: TLS_AES_256_GCM_SHA384 TLS_CHACHA20_POLY1305_SHA256 TLS_AES_128_GCM_SHA256 Server defaults (Server Hello) TLS extensions (standard) "renegotiation info/#65281" "server name/#0" "EC point formats/#11" "session ticket/#35" "next protocol/#13172" "supported versions/#43" "key share/#51" "supported_groups/#10" "max fragment length/#1" "application layer protocol negotiation/#16" "extended master secret/#23" Session Ticket RFC 5077 hint 43200 seconds, session tickets keys seems to be rotated < daily SSL Session ID support yes Session Resumption Tickets: yes, ID: yes TLS clock skew Random values, no fingerprinting possible Server Certificate #1 Signature Algorithm SHA256 with RSA Server key size RSA 2048 bits Server key usage Digital Signature, Key Encipherment Server extended key usage TLS Web Server Authentication Serial / Fingerprints 066AEB03467797F39BE5DF9BE64518ABAC61 / SHA1 DBE0BE777B3634341D6D5AF613CFCA2A63F34AF1 SHA256 6871E6FD32BB55F2A3E4C2E65923B7D5EFB6D6C46B10EAAD92E7B6DEA4CB70FB Common Name (CN) www.htmlyse.com subjectAltName (SAN) htmlyse.com mta-sts.htmlyse.com www.htmlyse.com Issuer R13 (Let's Encrypt from US) Trust (hostname) Ok via SAN (same w/o SNI) Chain of trust Ok EV cert (experimental) no Certificate Validity (UTC) 89 >= 60 days (2026-03-03 09:05 --> 2026-06-01 09:05) # of certificates provided 2 Certificate Revocation List http://r13.c.lencr.org/98.crl OCSP URI -- OCSP stapling not offered OCSP must staple extension -- DNS CAA RR (experimental) available - please check for match with "Issuer" above issue=comodoca.com, issue=digicert.com;, issue=globalsign.com, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com Certificate Transparency yes (certificate extension) Server Certificate #2 Signature Algorithm ECDSA with SHA384 Server key size EC 256 bits Server key usage Digital Signature Server extended key usage TLS Web Server Authentication Serial / Fingerprints 061F1006521D23A35FF177290432370424DC / SHA1 CA87D51255D1E4C8DE2D5E9A37BC3D4085FFC80A SHA256 71AC4127A0799A8C8FD43B29A13753DF86CDE4EEC3AC60A32342F19A0037F179 Common Name (CN) www.htmlyse.com subjectAltName (SAN) htmlyse.com mta-sts.htmlyse.com www.htmlyse.com Issuer E8 (Let's Encrypt from US) Trust (hostname) Ok via SAN (same w/o SNI) Chain of trust Ok EV cert (experimental) no Certificate Validity (UTC) 89 >= 60 days (2026-03-03 09:05 --> 2026-06-01 09:05) # of certificates provided 2 Certificate Revocation List http://e8.c.lencr.org/93.crl OCSP URI -- OCSP stapling not offered OCSP must staple extension -- DNS CAA RR (experimental) available - please check for match with "Issuer" above issue=comodoca.com, issue=digicert.com;, issue=globalsign.com, issue=letsencrypt.org, issue=pki.goog;, issue=ssl.com, issuewild=comodoca.com, issuewild=digicert.com;, issuewild=letsencrypt.org, issuewild=pki.goog;, issuewild=ssl.com Certificate Transparency yes (certificate extension) HTTP header response @ "/" HTTP Status Code 301 Moved Permanently, redirecting to "https://www.htmlyse.com/" HTTP clock skew 0 sec from localtime Strict Transport Security 730 days=63072000 s, includeSubDomains, preload Public Key Pinning 3 keys, 1 s = 0 days (< 2592000 s = 30 days is not good enough), includeSubDomains Host cert: ihayW/L1yS/QcF1C42q+kvOzRAF4eyACmOruFKs8rsA Backups: B6YXA7gyeIPUPUiudhXOWmzCl6k4Rq4slTkRSgBZO/4 U/pCLCPTSyCwvUeXePqytY685slnSbQwXIg2+tdwOQw Server banner (no "Server" line in header, interesting!) Application banner -- Cookie(s) (none issued at "/") -- maybe better try target URL of 30x Security headers X-Frame-Options SAMEORIGIN X-XSS-Protection 1; mode=block X-Content-Type-Options nosniff Content-Security-Policy default-src 'none'; upgrade-insecure-requests; img-src 'self' https://www.google-analytics.com/ https://stats.g.doubleclick.net/ https://www.google.com/; form-action 'self' https://www.htmlyse.com/htmlyse; frame-ancestors 'self'; base-uri 'self'; style-src 'self'; font-src 'self'; connect-src 'self'; object-src 'none'; script-src 'self' https://www.google-analytics.com/; Expect-CT max-age=63072000, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Referrer-Policy no-referrer-when-downgrade, strict-origin-when-cross-origin X-UA-Compatible IE=edge Reverse Proxy banner -- SSL/TLS vulnerabilities Heartbleed (CVE-2014-0160) not vulnerable (OK), no heartbeat extension CCS (CVE-2014-0224) not vulnerable (OK) Ticketbleed (CVE-2016-9244), experiment. not vulnerable (OK) ROBOT Server does not support any cipher suites that use RSA key transport Secure Renegotiation (CVE-2009-3555) not vulnerable (OK) Secure Client-Initiated Renegotiation not vulnerable (OK) CRIME, TLS (CVE-2012-4929) not vulnerable (OK) BREACH (CVE-2013-3587) no HTTP compression (OK) - only supplied "/" tested POODLE, SSL (CVE-2014-3566) not vulnerable (OK) TLS_FALLBACK_SCSV (RFC 7507) No fallback possible, no protocol below TLS 1.2 offered (OK) SWEET32 (CVE-2016-2183, CVE-2016-6329) not vulnerable (OK) FREAK (CVE-2015-0204) not vulnerable (OK) DROWN (CVE-2016-0800, CVE-2016-0703) not vulnerable on this host and port (OK) make sure you don't use this certificate elsewhere with SSLv2 enabled services https://censys.io/ipv4?q=6871E6FD32BB55F2A3E4C2E65923B7D5EFB6D6C46B10EAAD92E7B6DEA4CB70FB could help you to find out LOGJAM (CVE-2015-4000), experimental not vulnerable (OK): no DH EXPORT ciphers, no DH key detected BEAST (CVE-2011-3389) no SSL3 or TLS1 (OK) LUCKY13 (CVE-2013-0169), experimental not vulnerable (OK) RC4 (CVE-2013-2566, CVE-2015-2808) no RC4 ciphers detected (OK) Tested 370 ciphers, ordered by encryption strength Hexcode Cipher Suite Name (OpenSSL) KeyExch. Encryption Bits Cipher Suite Name (RFC) ----------------------------------------------------------------------------------------------------------------------------- x1302 TLS_AES_256_GCM_SHA384 ECDH 253 AESGCM 256 TLS_AES_256_GCM_SHA384 x1303 TLS_CHACHA20_POLY1305_SHA256 ECDH 253 ChaCha20 256 TLS_CHACHA20_POLY1305_SHA256 xcca9 ECDHE-ECDSA-CHACHA20-POLY1305 ECDH 253 ChaCha20 256 TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 x1301 TLS_AES_128_GCM_SHA256 ECDH 253 AESGCM 128 TLS_AES_128_GCM_SHA256 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 Ciphers per protocol, ordered by encryption strength Hexcode Cipher Suite Name (OpenSSL) KeyExch. Encryption Bits Cipher Suite Name (RFC) ----------------------------------------------------------------------------------------------------------------------------- TLS 1.3 x1302 TLS_AES_256_GCM_SHA384 ECDH 253 AESGCM 256 TLS_AES_256_GCM_SHA384 x1303 TLS_CHACHA20_POLY1305_SHA256 ECDH 253 ChaCha20 256 TLS_CHACHA20_POLY1305_SHA256 x1301 TLS_AES_128_GCM_SHA256 ECDH 253 AESGCM 128 TLS_AES_128_GCM_SHA256 TLS 1.2 xcca9 ECDHE-ECDSA-CHACHA20-POLY1305 ECDH 253 ChaCha20 256 TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 xc02f ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 xc02b ECDHE-ECDSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 TLS 1.1 TLS 1 SSLv3 SSLv2 Client simulations Android 2.3.7 No connection Android 4.0.4 No connection Android 4.1.1 No connection Android 4.2.2 No connection Android 4.3 No connection Android 4.4.2 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Android 5.0.0 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Android 6.0 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Android 7.0 (native) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Android 8.1 (native) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Android 9.0 (native) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Android 10.0 (native) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Android 11 (native) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Android 12 (native) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Chrome 27 Win 7 No connection Chrome 28 Win 7 No connection Chrome 29 Win 7 No connection Chrome 30 Win 7 No connection Chrome 31 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 32 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 33 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 34 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 35 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 36 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 37 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 39 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 40 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 42 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 43 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 45 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 47 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 48 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 49 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 49 XP SP3 TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Chrome 50 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Chrome 51 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Chrome 57 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Chrome 65 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Chrome 70 Win 10 TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Chrome 73 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Chrome 74 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Chrome 78 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Chrome 79 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Chrome 101 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Firefox 10.0.12 ESR Win 7 No connection Firefox 17.0.7 ESR Win 7 No connection Firefox 21 Fedora 19 No connection Firefox 21 Win 7 No connection Firefox 22 Win 7 No connection Firefox 24.2.0 ESR Win 7 No connection Firefox 24 Win 7 No connection Firefox 26 Win 8 No connection Firefox 27 Win 8 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 29 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 30 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 31.3.0 ESR Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 31 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 32 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 34 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 35 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 37 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 39 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 41 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 42 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 44 OS X TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 45 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 46 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 47 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 49 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 49 XP SP3 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Firefox 53 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Firefox 59 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Firefox 62 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Firefox 66 (Win 8.1/10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Firefox 71 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Firefox 100 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) IE 6 XP No connection IE 7 Vista No connection IE 8-10 Win 7 No connection IE 8 Win 7 No connection IE 8 XP No connection IE 9 Win 7 No connection IE 10 Win Phone 8.0 No connection IE 11 Win 7 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) IE 11 Win 8.1 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) IE 11 Win Phone 8.1 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) IE 11 Win Phone 8.1 Update TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) IE 11 Win 10 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) IE 11 Win 10 Preview TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Edge 12 Win 10 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Edge 13 Win 10 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Edge 13 Win Phone 10 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Edge 15 Win 10 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Edge 17 (Win 10) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Edge 101 Win 10 21H2 TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Opera 12.15 Win 7 No connection Opera 15 Win 7 No connection Opera 16 Win 7 No connection Opera 17 Win 7 No connection Opera 60 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Opera 65 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Opera 66 (Win 10) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Safari 5.1.9 OS X 10.6.8 No connection Safari 5 iOS 5.1.1 No connection Safari 6.0.4 OS X 10.8.4 No connection Safari 6 iOS 6.0.1 No connection Safari 7 iOS 7.1 No connection Safari 7 OS X 10.9 No connection Safari 8 iOS 8.0 Beta No connection Safari 8 iOS 8.4 No connection Safari 8 OS X 10.10 No connection Safari 9 iOS 9 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Safari 9 OS X 10.11 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Safari 10 iOS 10 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Safari 10 OS X 10.12 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Safari 12.1 (iOS 12.2) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Safari 12.1 (macOS 10.13.6) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Safari 13.0 (macOS 10.14.6) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Safari 15.4 (macOS 12.3.1) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Apple ATS 9 iOS 9 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Tor 17.0.9 Win 7 No connection Java 6u45 No connection Java 7u25 No connection Java 8b132 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Java 8u111 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Java 8u161 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Java 8u31 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Java 9.0.4 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Java 11.0.2 (OpenJDK) TLSv1.3 TLS_AES_256_GCM_SHA384, 256 bit ECDH (P-256) Java 12.0.1 (OpenJDK) TLSv1.3 TLS_AES_256_GCM_SHA384, 256 bit ECDH (P-256) Java 17.0.3 (OpenJDK) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) go 1.17.8 TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) LibreSSL 2.8.3 (Apple) TLSv1.2 ECDHE-ECDSA-CHACHA20-POLY1305, 253 bit ECDH (X25519) OpenSSL 0.9.8y No connection OpenSSL 1.0.1h TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) OpenSSL 1.0.1l TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) OpenSSL 1.0.2e TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) OpenSSL 1.1.0j (Debian) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) OpenSSL 1.1.0l (Debian) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) OpenSSL 1.1.1b (Debian) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) OpenSSL 1.1.1d (Debian) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) OpenSSL 3.0.3 (git) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Apple Mail (16.0) TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Thunderbird (60.6) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Thunderbird (68.3) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Thunderbird (91.9) TLSv1.3 TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519) Baidu Jan 2015 No connection BingBot Dec 2013 No connection BingPreview Dec 2013 No connection BingPreview Jan 2015 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) BingPreview Jun 2014 No connection Yahoo Slurp Jan 2015 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Googlebot Feb 2015 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Googlebot Feb 2018 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 253 bit ECDH (X25519) Googlebot Jun 2014 No connection Googlebot Oct 2013 No connection Yahoo Slurp Jun 2014 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) Yahoo Slurp Oct 2013 No connection YandexBot 3.0 No connection YandexBot Jan 2015 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256) YandexBot May 2014 No connection YandexBot Sep 2014 TLSv1.2 ECDHE-ECDSA-AES128-GCM-SHA256, 256 bit ECDH (P-256)
HTTP Strict Transport Security (HSTS) offered (OK) Content Security Policy (CSP) offered (OK) X-Frame-Options offered (OK) X-XSS-Protection offered (OK) X-Content-Type-Options offered (OK) Expect-CT offered (OK) Referrer Policy offered (OK) Feature Policy offered (OK) Web Server Version Disclosure not offered (OK) Web Application Disclosure not offered (OK) HTTP Public Key Pins (HPKP) offered, deprecated Connection Performance Keep Alive Connection offered (OK) Content Encoding (Compression) offered (Brotli) OK, for static pages or if no secrets in the page Raw HTTP Headers
| HTTP/1.1 | 200 OK |
| Connection | keep-alive |
| Content-Encoding | br |
| Content-Length | 2475 |
| Content-Security-Policy | default-src 'none'; upgrade-insecure-requests; img-src 'self' https://www.google-analytics.com/ https://stats.g.doubleclick.net/ https://www.google.com/; form-action 'self' https://www.htmlyse.com/htmlyse; frame-ancestors 'self'; base-uri 'self'; style-src 'self'; font-src 'self'; connect-src 'self'; object-src 'none'; script-src 'self' https://www.google-analytics.com/; |
| Content-Type | text/html; charset=UTF-8 |
| Date | Tue, 03 Mar 2026 10:05:34 GMT |
| Expect-CT | max-age=63072000, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" |
| Feature-Policy | midi 'none'; accelerometer 'none'; camera 'none'; geolocation 'none'; gyroscope 'none'; magnetometer 'none'; microphone 'none'; payment 'none'; usb 'none' |
| Public-Key-Pins | pin-sha256="ihayW/L1yS/QcF1C42q+kvOzRAF4eyACmOruFKs8rsA="; pin-sha256="B6YXA7gyeIPUPUiudhXOWmzCl6k4Rq4slTkRSgBZO/4="; pin-sha256="U/pCLCPTSyCwvUeXePqytY685slnSbQwXIg2+tdwOQw="; max-age=1; includeSubDomains |
| Referrer-Policy | no-referrer-when-downgrade, strict-origin-when-cross-origin |
| Strict-Transport-Security | max-age=63072000; includeSubDomains; preload |
| Vary | Accept-Encoding |
| X-Content-Type-Options | nosniff |
| X-Frame-Options | SAMEORIGIN |
| X-UA-Compatible | IE=edge |
| X-XSS-Protection | 1; mode=block |