dux.net.pl
Score 92/100
Web site information
Web Address
IP Address
Web Servers
Apache
Font Scripts
Google Font API
Tag Managers
Google Tag Manager
JavaScript Frameworks
Lo-dash
Cache Tools
WP Rocket
Ecommerce
WooCommerce
CMS
WordPress
Programming Languages
PHP
SEO data
title
Hurtownia elektryczna, klimatyzacja Turek, klimatyzacje Turek, fotowoltaika, pompy ciepła. - Hurtownia Elektryczna DUX - elektryka, fotowoltaika, klimatyzacje, pompy ciepła
robots
index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1
twitter:card
summary_large_image
msvalidate.01
82eebebbb4f54edcb0cf6a4f1823931b
google-site-verification
RiwFIWMFuJK8n52rYTsvt1aJDrolKO85X75x6ayg-6o
geo.position
52.01844434281389;18.511883835833867
geo.region
Polska
generator
Elementor 3.19.0; features: e_optimized_assets_loading, e_optimized_css_loading, e_font_icon_svg, additional_custom_breakpoints, block_editor_assets_optimize, e_image_loading_optimization; settings: css_print_method-external, google_font-enabled, font_display-auto
facebook-domain-verification
bddgny7dmbwj3evwk8aki1f5erlpwh
Protocols
SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
not offered
TLS 1.2
offered
TLS 1.3
offered with final
ALPN HTTP2
h2
ALPN
http/1.1
Vulnerabilities
heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
not vulnerable
ROBOT
not vulnerable
SSL renegotiation
supported
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
potentially VULNERABLE, gzip HTTP compression detected - only supplied '/' tested
POODLE SSL
not vulnerable, no SSLv3
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable on this host and port
DROWN hint
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=FF11D587CB0538018E773B72C211E0F39198FA236BF1BB6BD36D873250D511DB
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
no DH key with <= TLS 1.2
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
potentially vulnerable, uses TLS CBC ciphers
RC4
not vulnerable
Header Responses
Status code
200 OK ('/')
Clock skew
0 seconds from localtime
ipv4 in header
X-Powered-By: WP Rocket/3.15.8.1 (check if it's your IP address or e.g. a cluster IP)
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
Upgrade
h2,h2c
Cache-Control
max-age=0, public
Server Defaults
TLS extensions
'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'
TLS session ticket
valid for 300 seconds only (<daily)
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
supported
cert numbers
1
Signature algorithm
SHA256 with RSA
Key size
RSA 2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
TLS Web Server Authentication, TLS Web Client Authentication
Serial number
042E778D2D84F02A398EBFE78915062639EF
cert serialNumberLen
18
Fingerprint SHA1
6D2C9E72C28FD128D3C27A0B09A708E3232B077D
Fingerprint SHA256
FF11D587CB0538018E773B72C211E0F39198FA236BF1BB6BD36D873250D511DB
Certificate details
-----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgISBC53jS2E8Co5jr/niRUGJjnvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTIyMzQ4MDBaFw0yNDA3MTEyMzQ3NTlaMBUxEzARBgNVBAMT CmR1eC5uZXQucGwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxbhv5 I317iKfS0MhnLGTsyUN51/YzU4IT8k+z1Nxjjp6tRsuc8xxAItSF4THA2BCSVv4d DvmL3jnvEutsfRADf730ystEY71BV6IrIh4Vz7DGgW+cCPIafq4k7Id2VuqSPN/m lz973lbWowSWz7nm5LgUs1gGJ4etmupw/3AXok2qX0OpVhsPuTPW0lSoRqnZtLBz K630PCLfBNXGmfjeUlPdQwpS9T6hp2vqiE6ALiox5qQPgFLvu0yN38ei81DE8131 HsxiipQr2q2zmkhyXcO7ELH2jNfts85M5mUc7Z1VNXNd/cr9TLng9QT50EwWnrjE OJcKWuKymOI84zvzAgMBAAGjggIdMIICGTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FNsUI1VBJy2aUuOXJVULS8xE5y6vMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCUG A1UdEQQeMByCCmR1eC5uZXQucGyCDnd3dy5kdXgubmV0LnBsMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGO1OzuiAAABAMARzBFAiApulx7avC6aGWi pzKD60znfauyhEiSu9xIChEbyWTXTwIhAOHzL9vu32LZXxomqYaP3EV4OpkII57U u/em4PrFdt4ZAHcAGZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGO 1OzulwAABAMASDBGAiEAxcUnrdxiV3azpa4BrS01exjXbjjzciJY0/npgvBx6sAC IQCkQdQrE268TEUTswOYcy8jcH0CS65T0a+jA/dow7aY8zANBgkqhkiG9w0BAQsF AAOCAQEAUDC1Q+0ofZM4EytZ2Tn+7TBM4/XpwI//lEMDmob902knJFijn5vJJr54 wP2IO9BjP+SC+u8Ow/XnB1wU+3uib+DcGXZOhIKKDapjXA1tPE0/x6PfuQLTjhuO hKGOlIvFYHFh9SVTWbtfXl2D4Mbe1dfEcRuad6PSHQZJTCBfesgehjj1Cf0MwboC Aop5VMPc56QL8eDk/J0we4nI10OAniIajin/t7nQJWcuFtXVl1lwhbJs9bI2Ap9c 2mc6EZkwgs4MR2GG5hry2ZXU9yfA9i6pv4LzgS2rsxjz8/Un8qwu+Y6s7UDjnU0M CZzyuYJfM53mQXMmfpzmCcYdbhl91w== -----END CERTIFICATE-----
Common names
dux.net.pl
Service Name Indication
*.lh.pl
SubjectAlternative Name
dux.net.pl www.dux.net.pl
Certificate authority issuers
R3 (Let's Encrypt from US)
Certificate trusted
Ok via SAN (SNI mandatory)
Certificate chain trusted
passed.
Is certificate Extended Validation
no
cert eTLS
not present
cert expirationStatus
63 >= 30 days
Valid from
2024-04-12 23:48
Valid until
2024-07-11 23:47
cert validityPeriod
No finding
Chain
2
certs list ordering problem
no
cert crlDistributionPoints
--
Online Certificate Status Protocol URL
http://r3.o.lencr.org
OCSP stapling
not offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)
Server Preferences
order
server
Which protocol negotiated
Default protocol TLS1.3
negotiated
TLS_AES_256_GCM_SHA384, 253 bit ECDH (X25519)
order TLSv1 2
ECDHE-RSA-AES256-GCM-SHA384
Perfect Forward Secrecy
PFS
offered
PFS s
ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA ECDHE-RSA-CAMELLIA128-SHA256 ECDHE-RSA-CAMELLIA256-SHA384
PFS ECDHE curves
prime256v1 secp384r1 secp521r1
Ciphers
ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(0xc030)
ECDHE-RSA-AES256-SHA384 ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
(0xc028)
ECDHE-RSA-AES256-SHA ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
(0xc014)
ECDHE-RSA-CAMELLIA256-SHA384 ECDH 256 Camellia 256 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
(0xc077)
AES256-GCM-SHA384 RSA AESGCM 256 TLS_RSA_WITH_AES_256_GCM_SHA384
(0x9d)
AES256-SHA256 RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA256
(0x3d)
AES256-SHA RSA AES 256 TLS_RSA_WITH_AES_256_CBC_SHA
(0x35)
CAMELLIA256-SHA256 RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
(0xc0)
CAMELLIA256-SHA RSA Camellia 256 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
(0x84)
ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
ECDHE-RSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
(0xc027)
ECDHE-RSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
(0xc013)
ECDHE-RSA-CAMELLIA128-SHA256 ECDH 256 Camellia 128 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
(0xc076)
AES128-GCM-SHA256 RSA AESGCM 128 TLS_RSA_WITH_AES_128_GCM_SHA256
(0x9c)
AES128-SHA256 RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA256
(0x3c)
AES128-SHA RSA AES 128 TLS_RSA_WITH_AES_128_CBC_SHA
(0x2f)
CAMELLIA128-SHA256 RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
(0xba)
CAMELLIA128-SHA RSA Camellia 128 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
(0x41)
Browser Simulations
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-android 81
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-android 90
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-android X
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-chrome 74 win10
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-chrome 79 win10
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-firefox 66 win81
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-firefox 71 win10
TLSv1.3 TLS_AES_256_GCM_SHA384
Windows XP Internet Explorer 6
No connection
Windows 7 Internet Explorer 8
No connection
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-SHA384
Windows 8.1 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-SHA384
clientsimulation-ie 11 winphone81
TLSv1.2 ECDHE-RSA-AES128-SHA256
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-edge 15 win10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-edge 17 win10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-opera 66 win10
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-safari 9 ios9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-safari 121 ios 122
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-safari 130 osx 10146
TLSv1.3 TLS_AES_256_GCM_SHA384
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Java 6 update 45
No connection
Java 7 update 25
No connection
clientsimulation-java 8u161
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-java1102
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-java1201
TLSv1.3 TLS_AES_256_GCM_SHA384
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-openssl 110l
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-openssl 111d
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-thunderbird 68 3 1
TLSv1.3 TLS_AES_256_GCM_SHA384