topcitynews.com

Score 96/100

Web site information

Website image topcitynews.com
Web Address
IP Address
Font Scripts
Google Font API
Web Servers
LiteSpeed
Web Frameworks
Bootstrap
CMS
WordPress
SEO
Yoast SEO
JavaScript Frameworks
jQuery
Programming Languages
PHP

SEO data

title
-
google-site-verification
mKED-vGD9wex4SCKehpegX6XtE9kpe52CYMksI9A_rw
viewport
width=device-width, initial-scale=1
robots
index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1
twitter:card
summary_large_image
generator
WordPress 5.8.2
msapplication-TileImage
https://topcitynews.com/wp-content/uploads/2021/07/cropped-All-City-News-4-1-270x270.png

Web site external calls

fonts.googleapis.com
fonts.gstatic.com

Protocols

SSLv2
not offered
SSLv3
not offered
TLS 1.0
not offered
TLS 1.1
is not offered
TLS 1.2
offered
TLS 1.3
offered with final
ALPN HTTP2
h2
ALPN
http/1.1

Vulnerabilities

heartbleed
not vulnerable, no heartbeat extension
CCS
not vulnerable
ticketbleed
no session ticket extension
ROBOT
not vulnerable, no RSA key transport cipher
SSL renegotiation
not vulnerable
SSL client renegotiation
not vulnerable
CRIME TLS
not vulnerable
BREACH
not vulnerable, no HTTP compression - only supplied '/' tested
POODLE SSL
not vulnerable
fallback SCSV
no protocol below TLS 1.2 offered
SWEET32
not vulnerable
FREAK
not vulnerable
DROWN
not vulnerable to DROWN on this host and port
DROWN
Make sure you don't use this certificate elsewhere with SSLv2 enabled services, see https://censys.io/ipv4?q=D5E7D94BDB897EA00BCEF66EBCB5217937A6BBA847F402D90A1EE962F100014A
LOGJAM-common primes
'HAProxy'
LOGJAM
not vulnerable, no DH EXPORT ciphers,
BEAST
not vulnerable, no SSL3 or TLS1
LUCKY13
potentially vulnerable, uses TLS CBC ciphers
RC4
not vulnerable

Header Responses

Status code
200 OK ('/')
Clock skew
-1 seconds from localtime
HSTS time
365 days (=31536000 seconds) > 15465600 seconds
HSTS subdomains
includes subdomains
HSTS preload
domain IS marked for preloading
HPKP
No support for HTTP Public Key Pinning
X-Frame-Options
SAMEORIGIN
X-XSS-Protection
1; mode=block
X-Content-Type-Options
nosniff
Referrer-Policy
Referrer-Policy: no-referrer-when-downgrade

Server Defaults

TLS extensions
'renegotiation info/#65281' 'server name/#0' 'EC point formats/#11' 'supported versions/#43' 'key share/#51' 'supported_groups/#10' 'max fragment length/#1' 'application layer protocol negotiation/#16' 'encrypt-then-mac/#22' 'extended master secret/#23'
TLS session ticket
No lifetime advertised
SSL sessionID support
yes
Session Ticket Resumption
not supported
Session ID Resumption
not supported
TLS timestamp
random
Signature algorithm
SHA256 with RSA
Key size
2048 bits
Key usage
Digital Signature, Key Encipherment
Extended key usage
cert_ext_keyusage
Serial number
7B7B6F3130D7D92C77E95511D48B7ACD
Fingerprint SHA1
DDC950502C05ABBDC03A5D9DF8BC670AD15901CC
Fingerprint SHA256
D5E7D94BDB897EA00BCEF66EBCB5217937A6BBA847F402D90A1EE962F100014A
Certificate details
-----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIQe3tvMTDX2Sx36VUR1It6zTANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTIxMDQxNDAwMDAwMFoXDTIyMDQxNDIzNTk1OVowGjEYMBYGA1UEAxMPdG9w Y2l0eW5ld3MuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ccW o9hyiAjSXFRTOZK1xZzvH78T/GKX+ItKjEnQPoVcYS+Gy8Lly00ZtYbfNuybJo77 jRNY9JwhTJVcnybY/GRYI5s4w0z3PhitH94R5lwLhhsoTqLmEGekHa0CpUziwidf GK0yTKp184URc2DF5E3nomV9RjvRM6XQVQF9udxj/br2XFvuZJl3Kj/x6nJSu0V2 P51kebNiMQqJ9eTmFR/XhNP7OwCb/7vGYnfCvDPT2cDm4DCtJcFSAzjKXjgKhwIj yGM/2CnV63HZ1n1Pxm8PqOYjhB8QLS5gDtwL8XS/6Byl8ZXBSWqseVbrLPHtaGMM c9G0k3Ld1LfrjD8cMwIDAQABo4ICjTCCAokwHwYDVR0jBBgwFoAUjYxexFStiuF3 6Zv5mwXhuAGNYeEwHQYDVR0OBBYEFFjfdfOpUCxAMGVmb+SMG3RpFHl1MA4GA1Ud DwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIHMCUwIwYIKwYBBQUHAgEW F2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECATCBhAYIKwYBBQUHAQEE eDB2ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LnNlY3RpZ28uY29tL1NlY3RpZ29S U0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzAB hhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAvBgNVHREEKDAmgg90b3BjaXR5bmV3 cy5jb22CE3d3dy50b3BjaXR5bmV3cy5jb20wggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdgBGpVXrdfqRIDC1oolp9PN9ESxBdL79SbiFq/L8cP5tRwAAAXjP+g5RAAAE AwBHMEUCIQCa4QkYReq+OVDIBBUZ7HUj3ofn5TzS+VkQUos+aGQ5nwIgM/CJIQ7o PNBqCNma//somdnzHnfoARVyOJQiSdqNOtAAdwDfpV6raIJPH2yt7rhfTj5a6s2i EqRqXo47EsAgRFwqcwAAAXjP+g4zAAAEAwBIMEYCIQDjBTmmbIgrbt11NZQY9Uhl NFe2f+VWJL+JCP7b9v+kqwIhAJBmrk/EpRpGwLCkXHrFpXNxWbHZoienktKA73if IbAeMA0GCSqGSIb3DQEBCwUAA4IBAQBE4ZK3HIS14Vtdvd0jpvmg07LMwiLXzNZM TEE1ryCHe5dQz5DsDAR2moEzQ1V+mDn1AqE0zuPVERKZfvp8gbzN2Zxf5AKPmTJ3 vt2n7hViMGbkV6FGj1fgenxe7hHWHF/cfha7zVwcZu1KtPGGLuUZ08NBTA/dY30S k1R8K5rhoY/f3avQhkDQOUJAluS9yL1Dlz1oA8NQ3WcZKj+7WTs//ahN1NqJsHd5 tVtbkFdZXl302Cjf3BGSkKaYchc0VinWu3NrpEizbCmX0IBx17NQM8edLy7EVHf7 KnUXGtrzp6PgCkZUgyoUdATYXIuwdp1P4bP84Zu2eHL4+eVanY0t -----END CERTIFICATE-----
Common names
topcitynews.com
Service Name Indication
*.web-hosting.com
SubjectAlternative Name
topcitynews.com www.topcitynews.com
Certificate authority issuers
Sectigo RSA Domain Validation Secure Server CA (Sectigo Limited from GB)
Certificate trusted
Ok via SAN and CN (SNI mandatory)
Certificate chain trusted
passed.
Is certificate Extended Validation
no
Days before expiry
132 >= 60 days
Valid from
2021-04-14 02:00
Valid until
2022-04-15 01:59
Chain
3
CRL distribution points
--
Online Certificate Status Protocol URL
http://ocsp.sectigo.com
OCSP stapling
not offered
cert mustStapleExtension
--
DNS CAArecord
--
certificate transparency
yes (certificate extension)

Server Preferences

order
server
Which protocol negotiated
Default protocol TLS1.3
negotiated
TLS13-AES-256-GCM-SHA384, 253 bit ECDH (X25519)
order TLSv1 2
ECDHE-RSA-AES128-GCM-SHA256

Perfect Forward Secrecy

PFS
offered
PFS s
DHE-RSA-AES128-GCM-SHA256 DHE-RSA-AES128-SHA256 DHE-RSA-AES128-SHA DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 ECDHE-RSA-AES128-SHA256 ECDHE-RSA-AES128-SHA ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA
ECDHE curves
prime256v1 secp384r1 secp521r1

Ciphers

ECDHE-RSA-AES256-GCM-SHA384 ECDH 256 AESGCM 256 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(0xc030)
ECDHE-RSA-AES256-SHA384 ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
(0xc028)
ECDHE-RSA-AES256-SHA ECDH 256 AES 256 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
(0xc014)
DHE-RSA-AES256-GCM-SHA384 DH 2048 AESGCM 256 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
(0x9f)
DHE-RSA-AES256-SHA256 DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
(0x6b)
DHE-RSA-AES256-SHA DH 2048 AES 256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA
(0x39)
ECDHE-RSA-AES128-GCM-SHA256 ECDH 256 AESGCM 128 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(0xc02f)
ECDHE-RSA-AES128-SHA256 ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
(0xc027)
ECDHE-RSA-AES128-SHA ECDH 256 AES 128 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
(0xc013)
DHE-RSA-AES128-GCM-SHA256 DH 2048 AESGCM 128 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
(0x9e)
DHE-RSA-AES128-SHA256 DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
(0x67)
DHE-RSA-AES128-SHA DH 2048 AES 128 TLS_DHE_RSA_WITH_AES_128_CBC_SHA
(0x33)

Browser Simulations

Android 2.3.7
No connection
Android 4.1.1
No connection
Android 4.3
No connection
Android 4.4.2
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 5.0.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 6.0
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Android 7.0
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
Windows Chrome 51
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
Windows Chrome 57
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
Windows Firefox 47
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
Windows Firefox 53
TLSv1.2 ECDHE-RSA-CHACHA20-POLY1305
Windows XP Internet Explorer 6
No connection
Windows Vista Internet Explorer 7
No connection
Windows XP Internet Explorer 8
No connection
Windows 7 Internet Explorer 8
No connection
Windows 7 Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 8.1 Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 8.1 update Internet Explorer 11
TLSv1.2 DHE-RSA-AES128-GCM-SHA256
Windows 10 Internet Explorer 11
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 10 Edge 13
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows Phone 10 Edge 13
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 7 Opera 17
TLSv1.2 ECDHE-RSA-AES128-SHA256
MacOSX 10.6.8 Safari 5.1.9
No connection
iOS 7 Safari 7
TLSv1.2 ECDHE-RSA-AES128-SHA256
MacOSX 10.11 Safari 9
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
MacOSX 10.12 Safari 10
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
iOS 9 App Transport Security 9
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
Windows 7 Tor 7.0.9
No connection
Java 6 update 45
No connection
Java 7 update 25
No connection
Java 8 update 31
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.1.1
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256
OpenSSL 1.0.2e
TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256