About
"About" tools
Development blog
Contact
History
Privacy Statement
Terms & Conditions
How to use the tools
Color
"Color" tools
CMYK conversion
HTML Color list
RGB conversion
Websafe Color list
Data
"Data" tools
Bandwidth convert
Download calculator
Data size calculator
Finance
"Finance" tools
EV mileage calculator
Fuel Cost calculator
Natural Gas calculator
Mortgage loan calculator
Music
"Music" tools
Beats-per-minute
Audio delay
Music Frequency
Song length
Music Scale
Tap your tempo
Photo
"Photo" tools
Aspect ratio
Aspect Fit
Composition Calculator
Depth-of-Field Calculator
DPI calculator
Image filesize calculator
Light calculator (EV)
Megapixel calculator
Megapixel Aspects
Physics
"Physics" tools
Acceleration calculator
Battery Capacity (Wh)
Distance calculator
Exponential growth
Gladwell's 10000 hours
Speed converter
tCO2e Calculator
Frequency Calculator
Electrical power
Wavelength Calculator
Video
"Video" tools
Audio file size calculator
Common bitrates
DCP file size
Foot-Lambert Calculator
Screen size
Video bitrate
Frame rate convert
Video file size calculator
Web
"Web" tools
Content Security Policy
Redirection check
Security Policy Framework check
HTTPS config check
HTML char map
Emoji char map
HTML encoder
SEO Performance
HTTPS Readiness test
Input
Check here if your site complies with the HTTPS best practices
Domain
Check domain!
Domain analysis: www.giflorist.com.my
Always redirect to same domain https://www.giflorist.com.my (BEST PRACTICE!)
IP address:
23.227.38.74
Certificate details
This SSL Certificate was created especially for
www.giflorist.com.my
Certificate issued by
Let's Encrypt
, of type
R3
(auto renewal)
Certificate start date:
Mar 10 07:06:32 2024 GMT
Certificate expiration:
Jun 8 07:06:31 2024 GMT
(in 49 days)
Certificate validity period:
90 days
(probably automated renewal)
Encryption algorithm:
TLSv1.3
/ TLS_AES_256_GCM_SHA384
More certificate details?
SSL Labs:
get more detailed HTTPS report
Mozilla Observatory:
get more detailed HTTPS report
HTTPS Headers
HTTP header content-security-policy is wrong - 1
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
HTTP header x-xss-protection is OK - 1
HTTP header x-frame-options is OK - 1
HTTP header strict-transport-security (
HSTS
) is set but too short (only 3 months valid - should be at least 6)
Content details
No mixed content: no http files used in the https page
How to get https for your site
Let’s Encrypt is a free, automated, and open Certificate Authority.
Example:
cloudfleet.io
,
scotthelme.co.uk
Cloudflare One-Click SSL
(also on the
Free Plan
)
Example:
toolstud.io
Paid certificates: Verisign, GeoTrust, Comodo, DigiCert, Thawte, Globalsign
Example:
www.amazon.com
,
www.mozilla.org
,
twitter.com
References
Google Chrome
and/or
Search
will punish your website for insecure content and practices. In short, every site should be
https://
, and should send every visitor of their
http://
site to the secure one.
Data Security Action Plan, step 1: Implement strict encryption measures on all network traffic
BuiltWith: SSL by Default Usage Statistics
