HTTPS Readiness test

Input

Check here if your site complies with the HTTPS best practices

Domain analysis: toolstud.io

  • Always redirect to same domain https://toolstud.io (BEST PRACTICE!)
  • IP addresses: 3.122.152.250, 3.69.213.60, 3.67.181.148
  • Certificate details

  • This SSL Certificate was created especially for toolstud.io
  • Certificate issued by Let's Encrypt, of type R3 (auto renewal)
  • Certificate start date: Jan 30 23:32:45 2023 GMT
  • Certificate expiration: Apr 30 23:32:44 2023 GMT (in 31 days)
  • Certificate validity period: 90 days (probably automated renewal)
  • Encryption algorithm: TLSv1.3 / TLS_AES_128_GCM_SHA256
  • More certificate details?
  • SSL Labs: get more detailed HTTPS report
  • Mozilla Observatory: get more detailed HTTPS report
  • HTTPS Headers

  • Missing HTTP header content-security-policy - create at least a minimal one
  • Missing HTTP header strict-transport-security (HSTS)
  • HTTP header x-xss-protection is OK - cross-scripting protection
  • HTTP header x-frame-options is OK - iframe clickjacking protection
  • For a GDPR-focused review of your domain, use Churlie GDPR Checkup
  • Content details

  • No mixed content: no http files used in the https page
  • How to get https for your site

    References