Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.BTLS Certificate Expiry & Recommendations60 days until leaf cert expires — 2 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BCDN & DeliveryCloudflareREVIEW
A+DNS Records2 A records, 41 ms lookupPASS
| A | 104.19.223.79, 104.19.222.79 |
| AAAA | 2606:4700::6813:de4f, 2606:4700::6813:df4f |
| CNAME | — |
| NS | simon.ns.cloudflare.com, lucy.ns.cloudflare.com |
| MX | 1 aspmx.l.google.com 5 alt2.aspmx.l.google.com 5 alt1.aspmx.l.google.com 10 alt4.aspmx.l.google.com 10 alt3.aspmx.l.google.com |
| TXT | SPF v=spf1 include:_spf.google.com include:mail.zendesk.com include:servers.mcsv.net... google-site-verification=Nok-adtb4YRl72yDEbPFnpcsxlRGNrZMAY_l_gLjXvk facebook-domain-verification=ous0orhakq7n4pknyzmiu1tha9h6r0 google-site-verification=REU8l5064iTxJy-lPUU6jW8W9PTQGUGZeDz1WpJ3s7s ahrefs-site-verification_025d4503c033da309d088d02b7da6ce0000c757f49cb74da33db5ca... |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
A+Redirect Chain0 redirect(s), 61 ms totalPASS
https://whatismyipaddress.com
61 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://whatismyipaddress.com | 403 | 61 ms | HTTP/1.1 | cloudflare |
A+IPv6 ReadinessIPv6 reachable (17 ms)PASS
A+Crawlabilityrobots.txt present, sitemap with 6 URLsPASS
Sitemap: https://whatismyipaddress.com/sitemap.xml
User-agent: *
Allow: /ads.txt
User-agent: *
Disallow: /cdn-cgi/
Disallow: /pdf/
Disallow: /wp-admin/
Disallow: /wp-includes/
Disallow: /ds3
Disallow: /search
Disallow: /?s=*
Disallow: /page/*?s=
A+URL Variantswww/non-www, trailing slash, HTTP→HTTPSPASS
www / non-www
HTTP → HTTPS
Consistent
A+Domain Intelligencewhatismyipaddress.com — via GoDaddy.com, LLC, 26 years, 8 months oldPASS
2367 days
January 4, 2033
60 days
Issued by Google Trust Services
26 years, 8 months
Registered January 4, 2000
Enabled
Protects against DNS spoofing
Unknown
2606:4700::6813:df4f
GoDaddy.com, LLC
Expiry timeline
Recommended actions
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice