sarandrea.eu

Score 80/100

Web site information

Website image sarandrea.eu
Web Address
IP Address
Font Scripts
Font Awesome
JavaScript Frameworks
Modernizr
Web Servers
Nginx
Hosting Panels
Plesk
CMS
WordPress
SEO
Yoast SEO
Programming Languages
PHP

SEO data

title
Sarandrea fantasia in gusto homepage - Sarandrea
viewport
width=device-width, initial-scale=1, maximum-scale=1, user-scalable=no
mobile-web-app-capable
yes
apple-mobile-web-app-capable
yes
robots
index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1
description
Sarandrea fantasia in gusto homepage. Produciamo pasta fresca proponendo un prodotto artigianale di alta qualità, con garanzia di sicurezza alimentare.
twitter:card
summary_large_image
generator
WordPress 5.8

Web site external calls

www.googletagmanager.com
netdna.bootstrapcdn.com
fonts.googleapis.com
sarandrea.btobcreativity.ch
fonts.gstatic.com
www.google-analytics.com

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
is not offered
TLS 1.2
offered
TLS 1.3
not offered and downgraded to a weaker protocol
ALPN HTTP2
h2
ALPN
http/1.1

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
not vulnerable
ROBOT
not vulnerable
SSL renegotiation
not vulnerable
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
potentially VULNERABLE, uses gzip HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable to DROWN on this host and port
DROWN
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=FAE3264F84CB225E4C96FEC91698786EC463394F0E552F3F76EC316E0CB6800F
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
no DH key
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
potentially vulnerable, uses TLS CBC ciphers
RC4
not vulnerable

Header Responses

Status code
200 OK ('/')
Clock skew
0 seconds from localtime
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
security headers
--

Server Defaults

TLS extensions
'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'next protocol/#13172' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'
TLS session ticket
valid for 300 seconds only (<daily)
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
not supported
TLS timestamp
random
Signature algorithm
SHA256 with RSA
Key size
2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
cert_ext_keyusage
Serial number
03AD38A6478C1FF80557A120750B67B267FC
Fingerprint SHA1
990CD14AE220953D9BD11EA8FABCB69824A12251
Fingerprint SHA256
FAE3264F84CB225E4C96FEC91698786EC463394F0E552F3F76EC316E0CB6800F
Certificate details
-----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISA604pkeMH/gFV6EgdQtnsmf8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTA4MTQwMjI4MzdaFw0yMTExMTIwMjI4MzVaMBcxFTATBgNVBAMT DHNhcmFuZHJlYS5ldTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALQx 0w7Ze0uAoXEVoFLJzpg+TKiawHoyhf9AFFwkTFu/i8DqZSkIvaMgc+LQ0NJnH2L8 mXScj2JZuXYyW3z6hWUo+gnmgncQQNem2GVZLB85ZlJKEaRYYEf04eJj8SfPnNEX H/M/x8SMlPeIT+rRDaLSRaHbTOtIDue1A1OrPu0yoeNCc3gpLkMN316op48n4wTe Lzq3DIOub0fAJXYrOoahxKdE0B/p3Rl6jRanPRSNkWUSafX86KXE959WO4dt1Irl jJWWDHALOvMestqFESKXcr6sbQkfmc0BF1rHqS6f6IGwLFnuAbPUkj2B88QJMiFA 2eLnDWxglzisu0vUAdkCAwEAAaOCAlkwggJVMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU03pASGoa6p3250qoSLHKuEUiEFYwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w KQYDVR0RBCIwIIIMc2FyYW5kcmVhLmV1ghB3d3cuc2FyYW5kcmVhLmV1MEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHUARJRlLrDuzq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2gagAAAF7QrRNvwAABAMA RjBEAiAZVEQ7NEZ02b1zTkwcBmB9d7MSrqN1bbxn5vCVRzIlygIgWlWbrt3443hF ft3KPB/RfJIiRCgkaV0BCITuBLzdQdQAdwB9PvL4j/+IVWgkwsDKnlKJeSvFDngJ fy5ql2iZfiLw1wAAAXtCtE3lAAAEAwBIMEYCIQDMNDfxqj4VbXAVSjfON8OGdLaH UuCJvsoFAEbFzW2QmwIhAMZqRYIxKnIumnBq7a/O42WtfWN+BGv8T1pJi8l/Agyq MA0GCSqGSIb3DQEBCwUAA4IBAQAR6LYIod7/vrciEQItUa1kyMxyMX2NhgoMrJrg nDQy3EkmA63/DE+nUj6HK31xqxNnCG10wiRu8Fq9JMJJex2YjqLx5t0VhLDbuq7I u25gZrDu6ZDSHjfOjrjQVkcckJYhhcV0fDF29uxO4Hi5nt7AUyKtZu9ZOeTdUN1F 869Ur6679aoNIci9Wkovg6l674C4XJ6Kbc5GX/qnllhc0M4kJj8OerZ2AQhrR5+5 3JDyIL0vT7dWmmL5t7/D2eQOMiWb+4GGuDDWGV9FjN+7+twkQWcyYax38fV00A7x Irn0xUk3mlEg8xnbKkgPz2T/AAf+PhPJte4TGzD1kdD3gJOs -----END CERTIFICATE-----
Common names
sarandrea.eu
Service Name Indication
*.arubabusiness.it
SubjectAlternative Name
sarandrea.eu www.sarandrea.eu
Certificate authority issuers
R3 (Let's Encrypt from US)
Certificate trusted
Ok via SAN and CN (SNI mandatory)
Certificate chain trusted
failed (expired).
Is certificate Extended Validation
no
Days before expiry
expires < 60 days (33)
Valid from
2021-08-14 04:28
Valid until
2021-11-12 03:28
Chain
3
CRL distribution points
--
Online Certificate Status Protocol URL
http://r3.o.lencr.org
OCSP stapling
not offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)

Server Preferences

order
server
Which protocol negotiated
Default protocol TLS1.2
negotiated
ECDHE-RSA-AES256-GCM-SHA384, 256 bit ECDH (P-256)
order TLSv1 2
ECDHE-RSA-AES256-GCM-SHA384

Perfect Forward Secrecy

PFS
offered
PFS s
ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA
ECDHE curves
prime256v1 secp384r1 secp521r1

Ciphers

ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(0xc030)
ECDHE-RSA-AES256-SHA384 ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
(0xc028)
ECDHE-RSA-AES256-SHA ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
(0xc014)
AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384
(0x9d)
AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256
(0x3d)
AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA
(0x35)
ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
ECDHE-RSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
(0xc027)
ECDHE-RSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
(0xc013)
AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256
(0x9c)
AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256
(0x3c)
AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA
(0x2f)

Browser Simulations

Android 2.3.7
No connection
Android 4.1.1
No connection
Android 4.3
No connection
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES256-SHA
Android 6.0
TLSv1.2 ECDHE-RSA-AES256-SHA
Android 7.0
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Chrome 51
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Chrome 57
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Firefox 47
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Firefox 53
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows XP Internet Explorer 6
No connection
Windows Vista Internet Explorer 7
No connection
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 8
No connection
Windows 7 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-SHA384
Windows 8.1 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-SHA384
Windows 8.1 update Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-SHA384
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 10 Edge 13
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows Phone 10 Edge 13
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 7 Opera 17
TLSv1.2 ECDHE-RSA-AES256-SHA
MacOSX 10.6.8 Safari 5.1.9
No connection
iOS 7 Safari 7
TLSv1.2 ECDHE-RSA-AES256-SHA384
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Windows 7 Tor 7.0.9
No connection
Java 6 update 45
No connection
Java 7 update 25
No connection
Java 8 update 31
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.1.1
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384