Deploying to gh-pages from @ 2c2186b 🚀

report/aHR0cHM6Ly93d3cubWF0Y2hpZC5pbw==/nmapvuln.html

@@ -54,7 +54,7 @@
 <h1>Scan Report<br><small>Nmap 7.92</small>
 </h1>
 <pre style="white-space:pre-wrap; word-wrap:break-word;">nmap -sV --script vulners --script-args mincvss=5.0 -oA /data/nmapvuln www.matchid.io</pre>
-<p class="lead">Sun Aug  4 01:09:37 2024 – Sun Aug  4 01:10:08 2024<br>1 hosts scanned.
+<p class="lead">Sun Aug 11 01:10:40 2024 – Sun Aug 11 01:11:12 2024<br>1 hosts scanned.
               1 hosts up.
               0 hosts down.
             </p>

report/aHR0cHM6Ly93d3cubWF0Y2hpZC5pbw==/testssl.html

@@ -21,13 +21,13 @@
 ###########################################################</span>
 
  Using &quot;OpenSSL 1.0.2-bad (1.0.2k-dev)&quot; [~183 ciphers]
- on fv-az698-968:/home/testssl/bin/openssl.Linux.x86_64
+ on fv-az1498-336:/home/testssl/bin/openssl.Linux.x86_64
  (built: &quot;Sep  1 14:03:44 2022&quot;, platform: &quot;linux-x86_64&quot;)
 
 
 <span style="font-weight:bold;">Testing all IPv4 addresses (port 443): </span>172.67.179.218 104.21.64.91
 -----------------------------------------------------
-<span style="color:white;background-color:black;"> Start 2024-08-04 01:08:26                --&gt;&gt; 172.67.179.218:443 (www.matchid.io) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Start 2024-08-11 01:09:26                --&gt;&gt; 172.67.179.218:443 (www.matchid.io) &lt;&lt;--</span>
 
  Further IP addresses:   104.21.64.91 2606:4700:3031::ac43:b3da
                          2606:4700:3030::6815:405b 
@@ -105,20 +105,20 @@
 <span style="font-weight:bold;"> Server key size              </span>EC <span style="color:#008817;">256</span> bits (curve P-256)
 <span style="font-weight:bold;"> Server key usage             </span>Digital Signature
 <span style="font-weight:bold;"> Server extended key usage    </span>TLS Web Server Authentication
-<span style="font-weight:bold;"> Serial                       </span>5F8D67DD27D0FB2B1380319374B943EE (OK: length 16)
-<span style="font-weight:bold;"> Fingerprints                 </span>SHA1 861DEDFA126F10FF1A222F66C39FE617CA725503
-                              SHA256 9AF940D5B552E32A880DFF1817F6091472B3B49366307F7BD8E54520AC835BE2
+<span style="font-weight:bold;"> Serial                       </span>DE1D5CC66014390411C5E5077FD4403A (OK: length 16)
+<span style="font-weight:bold;"> Fingerprints                 </span>SHA1 29E759C2C1D87066EBFEEE2379B7E86FC26C2537
+                              SHA256 1B3A396948E658529BBDE564C3087EAC76CB98F1FDD1E132253B220564C05C5A
 <span style="font-weight:bold;"> Common Name (CN)             </span><i>matchid.io </i> (request w/o SNI didn&apos;t succeed, usual for EC certificates)
 <span style="font-weight:bold;"> subjectAltName (SAN)         </span><i>matchid.io *.matchid.io </i>
 <span style="font-weight:bold;"> Trust (hostname)             </span><span style="color:#008817;">Ok via SAN wildcard</span> (SNI mandatory)
                               <span style="color:#a86437;">wildcard certificate</span> could be problematic, see other hosts at
-                              https://search.censys.io/search?resource=hosts&amp;virtual_hosts=INCLUDE&amp;q=9AF940D5B552E32A880DFF1817F6091472B3B49366307F7BD8E54520AC835BE2
+                              https://search.censys.io/search?resource=hosts&amp;virtual_hosts=INCLUDE&amp;q=1B3A396948E658529BBDE564C3087EAC76CB98F1FDD1E132253B220564C05C5A
 <span style="font-weight:bold;"> Chain of trust</span>               <span style="color:#008817;">Ok   </span><span style="color:#cd00cd;"></span>
 <span style="font-weight:bold;"> EV cert</span> (experimental)       no 
-<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#c05600;">expires &lt; 60 days (37)</span> (2024-06-12 03:39 --&gt; 2024-09-10 03:39)
+<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#008817;">89 &gt;= 60 days</span> (2024-08-10 02:58 --&gt; 2024-11-08 02:58)
 <span style="font-weight:bold;"> ETS/&quot;eTLS&quot;</span>, visibility info  not present
-<span style="font-weight:bold;"> Certificate Revocation List  </span>http://c.pki.goog/we1/iUnSZAxKPhw.crl
-<span style="font-weight:bold;"> OCSP URI                     </span>http://o.pki.goog/s/we1/X40
+<span style="font-weight:bold;"> Certificate Revocation List  </span>http://c.pki.goog/we1/vpMVCCR8pGU.crl
+<span style="font-weight:bold;"> OCSP URI                     </span>http://o.pki.goog/s/we1/3h0
 <span style="font-weight:bold;"> OCSP stapling                </span><span style="color:#008817;">offered</span>, <span style="color:#008817;">not revoked</span>
 <span style="font-weight:bold;"> OCSP must staple extension   </span>--
 <span style="font-weight:bold;"> DNS CAA RR</span> (experimental)    <span style="color:#a86437;">not offered</span>
@@ -133,18 +133,18 @@
 <span style="text-decoration:underline;font-weight:bold;"> Testing HTTP header response @ &quot;/&quot; </span>
 
 <span style="font-weight:bold;"> HTTP Status Code           </span>  301 Moved Permanently, redirecting to &quot;<a href="http://matchid.io/" style="color:black;text-decoration:none;">http://matchid.io/</a>&quot;<span style="color:#e52207;"> -- Redirect to insecure URL (NOT ok)</span>
-<span style="font-weight:bold;"> HTTP clock skew              </span>+2177 sec from localtime
-<span style="font-weight:bold;"> HTTP Age</span> (RFC 7234)          2177
+<span style="font-weight:bold;"> HTTP clock skew              </span>+239 sec from localtime
+<span style="font-weight:bold;"> HTTP Age</span> (RFC 7234)          239
 <span style="font-weight:bold;"> Strict Transport Security    </span><span style="color:#008817;">180 days</span>=15552000 s<span style="color:#008817;">, includeSubDomains</span><span style="color:#008817;">, preload</span>
 <span style="font-weight:bold;"> Public Key Pinning           </span>--
 <span style="font-weight:bold;"> Server banner                </span>cloudflare
 <span style="font-weight:bold;"> Application banner           </span>--
 <span style="font-weight:bold;"> Cookie(s)                    </span>(none issued at &quot;/&quot;) -- maybe better try target URL of 30x
 <span style="font-weight:bold;"> Security headers             </span><span style="color:#008817;">X-Content-Type-Options</span>: nosniff
-                              X-Served-By: cache-sjc10021-SJC
+                              X-Served-By: cache-iad-kiad7000132-IAD
 <span style="font-weight:bold;"> Reverse Proxy banner         </span><span style="color:#8a7237;font-weight:bold;">Via</span>: <span style="color:#8a7237;">1</span>.<span style="color:#8a7237;">1</span> varnish
                               <span style="color:#8a7237;font-weight:bold;">X-Cache</span>: HIT
-                              <span style="color:#8a7237;font-weight:bold;">X-Cache</span>-Hits: <span style="color:#8a7237;">2</span>
+                              <span style="color:#8a7237;font-weight:bold;">X-Cache</span>-Hits: <span style="color:#8a7237;">1</span>
 
 
 <span style="text-decoration:underline;font-weight:bold;"> Testing vulnerabilities </span>
@@ -221,10 +221,10 @@
 <span style="font-weight:bold;"> Final Score                  </span>84
 <span style="font-weight:bold;"> Overall Grade                </span><span style="color:#008817;font-weight:bold;">A+</span>
 
-<span style="color:white;background-color:black;"> Done 2024-08-04 01:09:00 [  35s] --&gt;&gt; 172.67.179.218:443 (www.matchid.io) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Done 2024-08-11 01:10:03 [  38s] --&gt;&gt; 172.67.179.218:443 (www.matchid.io) &lt;&lt;--</span>
 
 -----------------------------------------------------
-<span style="color:white;background-color:black;"> Start 2024-08-04 01:09:00                --&gt;&gt; 104.21.64.91:443 (www.matchid.io) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Start 2024-08-11 01:10:03                --&gt;&gt; 104.21.64.91:443 (www.matchid.io) &lt;&lt;--</span>
 
  Further IP addresses:   172.67.179.218 2606:4700:3031::ac43:b3da
                          2606:4700:3030::6815:405b 
@@ -302,20 +302,20 @@
 <span style="font-weight:bold;"> Server key size              </span>EC <span style="color:#008817;">256</span> bits (curve P-256)
 <span style="font-weight:bold;"> Server key usage             </span>Digital Signature
 <span style="font-weight:bold;"> Server extended key usage    </span>TLS Web Server Authentication
-<span style="font-weight:bold;"> Serial                       </span>5F8D67DD27D0FB2B1380319374B943EE (OK: length 16)
-<span style="font-weight:bold;"> Fingerprints                 </span>SHA1 861DEDFA126F10FF1A222F66C39FE617CA725503
-                              SHA256 9AF940D5B552E32A880DFF1817F6091472B3B49366307F7BD8E54520AC835BE2
+<span style="font-weight:bold;"> Serial                       </span>DE1D5CC66014390411C5E5077FD4403A (OK: length 16)
+<span style="font-weight:bold;"> Fingerprints                 </span>SHA1 29E759C2C1D87066EBFEEE2379B7E86FC26C2537
+                              SHA256 1B3A396948E658529BBDE564C3087EAC76CB98F1FDD1E132253B220564C05C5A
 <span style="font-weight:bold;"> Common Name (CN)             </span><i>matchid.io </i> (request w/o SNI didn&apos;t succeed, usual for EC certificates)
 <span style="font-weight:bold;"> subjectAltName (SAN)         </span><i>matchid.io *.matchid.io </i>
 <span style="font-weight:bold;"> Trust (hostname)             </span><span style="color:#008817;">Ok via SAN wildcard</span> (SNI mandatory)
                               <span style="color:#a86437;">wildcard certificate</span> could be problematic, see other hosts at
-                              https://search.censys.io/search?resource=hosts&amp;virtual_hosts=INCLUDE&amp;q=9AF940D5B552E32A880DFF1817F6091472B3B49366307F7BD8E54520AC835BE2
+                              https://search.censys.io/search?resource=hosts&amp;virtual_hosts=INCLUDE&amp;q=1B3A396948E658529BBDE564C3087EAC76CB98F1FDD1E132253B220564C05C5A
 <span style="font-weight:bold;"> Chain of trust</span>               <span style="color:#008817;">Ok   </span><span style="color:#cd00cd;"></span>
 <span style="font-weight:bold;"> EV cert</span> (experimental)       no 
-<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#c05600;">expires &lt; 60 days (37)</span> (2024-06-12 03:39 --&gt; 2024-09-10 03:39)
+<span style="font-weight:bold;"> Certificate Validity (UTC)   </span><span style="color:#008817;">89 &gt;= 60 days</span> (2024-08-10 02:58 --&gt; 2024-11-08 02:58)
 <span style="font-weight:bold;"> ETS/&quot;eTLS&quot;</span>, visibility info  not present
-<span style="font-weight:bold;"> Certificate Revocation List  </span>http://c.pki.goog/we1/iUnSZAxKPhw.crl
-<span style="font-weight:bold;"> OCSP URI                     </span>http://o.pki.goog/s/we1/X40
+<span style="font-weight:bold;"> Certificate Revocation List  </span>http://c.pki.goog/we1/vpMVCCR8pGU.crl
+<span style="font-weight:bold;"> OCSP URI                     </span>http://o.pki.goog/s/we1/3h0
 <span style="font-weight:bold;"> OCSP stapling                </span><span style="color:#008817;">offered</span>, <span style="color:#008817;">not revoked</span>
 <span style="font-weight:bold;"> OCSP must staple extension   </span>--
 <span style="font-weight:bold;"> DNS CAA RR</span> (experimental)    <span style="color:#a86437;">not offered</span>
@@ -330,15 +330,15 @@
 <span style="text-decoration:underline;font-weight:bold;"> Testing HTTP header response @ &quot;/&quot; </span>
 
 <span style="font-weight:bold;"> HTTP Status Code           </span>  301 Moved Permanently, redirecting to &quot;<a href="http://matchid.io/" style="color:black;text-decoration:none;">http://matchid.io/</a>&quot;<span style="color:#e52207;"> -- Redirect to insecure URL (NOT ok)</span>
-<span style="font-weight:bold;"> HTTP clock skew              </span>+2211 sec from localtime
-<span style="font-weight:bold;"> HTTP Age</span> (RFC 7234)          2211
+<span style="font-weight:bold;"> HTTP clock skew              </span>+275 sec from localtime
+<span style="font-weight:bold;"> HTTP Age</span> (RFC 7234)          275
 <span style="font-weight:bold;"> Strict Transport Security    </span><span style="color:#008817;">180 days</span>=15552000 s<span style="color:#008817;">, includeSubDomains</span><span style="color:#008817;">, preload</span>
 <span style="font-weight:bold;"> Public Key Pinning           </span>--
 <span style="font-weight:bold;"> Server banner                </span>cloudflare
 <span style="font-weight:bold;"> Application banner           </span>--
 <span style="font-weight:bold;"> Cookie(s)                    </span>(none issued at &quot;/&quot;) -- maybe better try target URL of 30x
 <span style="font-weight:bold;"> Security headers             </span><span style="color:#008817;">X-Content-Type-Options</span>: nosniff
-                              X-Served-By: cache-sjc10041-SJC
+                              X-Served-By: cache-iad-kiad7000125-IAD
 <span style="font-weight:bold;"> Reverse Proxy banner         </span><span style="color:#8a7237;font-weight:bold;">Via</span>: <span style="color:#8a7237;">1</span>.<span style="color:#8a7237;">1</span> varnish
                               <span style="color:#8a7237;font-weight:bold;">X-Cache</span>: HIT
                               <span style="color:#8a7237;font-weight:bold;">X-Cache</span>-Hits: <span style="color:#8a7237;">1</span>
@@ -418,7 +418,7 @@
 <span style="font-weight:bold;"> Final Score                  </span>84
 <span style="font-weight:bold;"> Overall Grade                </span><span style="color:#008817;font-weight:bold;">A+</span>
 
-<span style="color:white;background-color:black;"> Done 2024-08-04 01:09:35 [  70s] --&gt;&gt; 104.21.64.91:443 (www.matchid.io) &lt;&lt;--</span>
+<span style="color:white;background-color:black;"> Done 2024-08-11 01:10:39 [  74s] --&gt;&gt; 104.21.64.91:443 (www.matchid.io) &lt;&lt;--</span>
 
 -----------------------------------------------------
 <span style="font-weight:bold;">Done testing now all IP addresses (on port 443): </span>172.67.179.218 104.21.64.91

report/aHR0cHM6Ly9kZWNlcy5tYXRjaGlkLmlv/nmapvuln.html

@@ -54,7 +54,7 @@
 <h1>Scan Report<br><small>Nmap 7.92</small>
 </h1>
 <pre style="white-space:pre-wrap; word-wrap:break-word;">nmap -sV --script vulners --script-args mincvss=5.0 -oA /data/nmapvuln deces.matchid.io</pre>
-<p class="lead">Sun Aug  4 01:09:41 2024 – Sun Aug  4 01:10:00 2024<br>1 hosts scanned.
+<p class="lead">Sun Aug 11 01:10:52 2024 – Sun Aug 11 01:11:11 2024<br>1 hosts scanned.
               1 hosts up.
               0 hosts down.
             </p>