liquid-buddies.com
Score 98/100
Web site information
Web Address
IP Address
Web Servers
Apache
CMS
WordPress
JavaScript Frameworks
jQuery
Programming Languages
PHP
SEO data
title
Wartungsarbeiten
description
E-Zigaretten, Liquids und mehr zum bestpreis!
Protocols
SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
not offered
TLS 1.2
offered
TLS 1.3
offered with final
ALPN HTTP2
h2
ALPN
http/1.1
Vulnerabilities
heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
not vulnerable
ROBOT
not vulnerable, no RSA key transport cipher
SSL renegotiation
supported
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
not vulnerable, no HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable, no SSLv3
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable on this host and port
DROWN hint
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=2AC58244BE219ABE47CBEB6CF6925DF451140DDAD7B91A84981730B5CEC9DA86
LOGJAM
not vulnerable, no DH EXPORT ciphers,
LOGJAM-common primes
--
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
not vulnerable
RC4
not vulnerable
Header Responses
Status code
200 OK ('/')
Clock skew
0 seconds from localtime
HSTS
not offered
HPKP
No support for HTTP Public Key Pinning
Upgrade
h2
Cache-Control
no-cache, must-revalidate, max-age=0
Server Defaults
TLS extensions
'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'session ticket/#35' 'status request/#5' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'extended master secret/#23'
TLS session ticket
valid for 300 seconds only (<daily)
SSL sessionID support
yes
Session Ticket Resumption
supported
Session ID Resumption
supported
cert numbers
1
Signature algorithm
SHA256 with RSA
Key size
RSA 2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
TLS Web Server Authentication, TLS Web Client Authentication
Serial number
04A0265789966057F69B4517955D1D1683A5
cert serialNumberLen
18
Fingerprint SHA1
398330608464903ED321E4AA7E5B990ADE9C2981
Fingerprint SHA256
2AC58244BE219ABE47CBEB6CF6925DF451140DDAD7B91A84981730B5CEC9DA86
Certificate details
-----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISBKAmV4mWYFf2m0UXlV0dFoOlMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTQwMjAyMTdaFw0yNDA1MTQwMjAyMTZaMB0xGzAZBgNVBAMT EmxpcXVpZC1idWRkaWVzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8A6WyQaPPmr0vWJsuph/C8D2QmF0LUEmVFEoborzztj9/ZTx8lRY2/PuA5 HinigaA4vXmh2I8merYEtXSMGBIoet/Tqwtlj+b7IyNF82X3dTKxl5mNFhB01V3N y/dem6atHbRALGIpIZ+u/u1t/7z/DHtIWT6YPJ7LQRpeLDkgWUA2MY6X1DlWSpTr CWMrHZSWPLyZovdcIy3F/Tjw9HswVrsiQKAUkMvUHYdg+1W9LM0G5k5lPExLmt2S Wbfs4crv+NjdoLfLZZ2Yv6ZBbRsvOu9onYr5coynm6rey3D5PgW0H5hsEwdpYQRu xrA8zQTpc8Gc9o9WM0+EIRja1L0CAwEAAaOCAiwwggIoMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQURt/Q1JioKiD8GWudsFsmpOY9GyMwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wNQYDVR0RBC4wLIISbGlxdWlkLWJ1ZGRpZXMuY29tghZ3d3cubGlxdWlk LWJ1ZGRpZXMuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGN pZCq+gAABAMASDBGAiEAhHc+WhkHF85QtCtVEsdnnFrFWAUWq8fAaSL4rRd28mIC IQDdJ3PRuzjv82aA3RRiXnnXA1gp3ARa1Y6/I0CEqLrtFwB1ADtTd3U+LbmATosw Wwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjaWQqwMAAAQDAEYwRAIgbp7ye44p86Ss TqBDaCej+bwHM2naDP6JUb0Ebg/Qiw8CICCwD/Ol77PqeHCutSg22CjQMUBApZ9A /7I9CAyRvFkyMA0GCSqGSIb3DQEBCwUAA4IBAQBtIZgJToRJxk7Hb9fIAYNGSntI kY213oNPuso4wWFRlGWDDRhAWWW+0PPYxz04oeB718Holtg4KBaWkKWILdaolxJ9 NtKvw8wuf20WXgCoryfjuTAkMGJPZVK8IUkZucAszpfFnrCq3+w//bZCMbtdW3Tx gqvq0dgSJPIxXaq4RgvuVXLhQYtEqJVzfe3huaGpkst3h9duB2kMOsoY5Rocwzan E2tcgowTD5aIQfeofRvbYt+U6YInNgccIvq2SJgNHmxNKkKO74JujI9RgZO/Q+87 bFvgEyYY0vgirQN38Hx3f/ePkWrJe50BIj4u4LMiGCC5oI2jsiCgP27go8T+ -----END CERTIFICATE-----
Common names
liquid-buddies.com
Service Name Indication
*.your-server.de
SubjectAlternative Name
liquid-buddies.com www.liquid-buddies.com
Certificate authority issuers
R3 (Let's Encrypt from US)
Certificate trusted
Ok via SAN (SNI mandatory)
Certificate chain trusted
passed.
Is certificate Extended Validation
no
cert eTLS
not present
cert expirationStatus
44 >= 30 days
Valid from
2024-02-14 02:02
Valid until
2024-05-14 02:02
cert validityPeriod
No finding
Chain
2
certs list ordering problem
no
cert crlDistributionPoints
--
Online Certificate Status Protocol URL
http://r3.o.lencr.org
OCSP stapling
offered
cert ocspRevoked
not revoked
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)
Server Preferences
order
server
Which protocol negotiated
Default protocol TLS1.3
negotiated
TLS_CHACHA20_POLY1305_SHA256, 253 bit ECDH (X25519)
order TLSv1 2
ECDHE-RSA-AES256-GCM-SHA384
Perfect Forward Secrecy
PFS
offered
PFS s
DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES256-GCM-SHA384
PFS ECDHE curves
prime256v1 secp384r1 secp521r1
Ciphers
ECDHE-RSA-AES256-GCM-SHA384 ECDH 521 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(0xc030)
DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
(0x9f)
ECDHE-RSA-AES128-GCM-SHA256 ECDH 521 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
(0x9e)
Browser Simulations
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
clientsimulation-android 81
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
clientsimulation-android 90
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-android X
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-chrome 74 win10
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-chrome 79 win10
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-firefox 66 win81
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-firefox 71 win10
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
Windows XP Internet Explorer 6
No connection
Windows 7 Internet Explorer 8
No connection
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 11
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
Windows 8.1 Internet Explorer 11
TLSv1.2 DHE-RSA-AES256-GCM-SHA384
clientsimulation-ie 11 winphone81
No connection
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-edge 15 win10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-edge 17 win10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-opera 66 win10
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-safari 9 ios9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-safari 121 ios 122
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-safari 130 osx 10146
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
Java 6 update 45
No connection
Java 7 update 25
No connection
clientsimulation-java 8u161
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-java1102
TLSv1.3 TLS_AES_256_GCM_SHA384
clientsimulation-java1201
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
clientsimulation-openssl 110l
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
clientsimulation-openssl 111d
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256
clientsimulation-thunderbird 68 3 1
TLSv1.3 TLS_CHACHA20_POLY1305_SHA256