Infrastructure

· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.

SCORE

GRADE

FIX

REVIEW

PASS

INFO

Probed from Amsterdam, Netherlands

301 Moved Permanently

Checks

6 PASS 1 REVIEW 1 FIX

CDN & Delivery

Action

No CDN detected

FIX

No CDN detected

A CDN can significantly improve load times for users around the world by caching content at edge nodes closer to them.

No CDN detected

Consider using a CDN to improve global delivery speed and reduce origin load.

TLS Certificate Expiry & Recommendations

324 days until leaf cert expires — 3 issues to address

REVIEW

Certificate validity

324

days left

0d 30d 60d 90d+

Recommended actions

Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
Enable DNSSEC on your domain for DNS spoofing protection
Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy

DNS Records

1 A records, 20 ms lookup

PASS

1 A records, 20 ms lookup

Resolves to 1 IPv4 address(es)

Got: 162.125.248.21

Single A record — no DNS redundancy

Multiple A records provide failover if one server goes down.

Has 1 IPv6 (AAAA) record(s)

Got: 2620:100:6040:21::a27d:f815

4 nameserver(s) configured

Got: ns-1191.awsdns-20.org, ns-1615.awsdns-09.co.uk, ns-473.awsdns-59.com, ns-817.awsdns-38.net

No MX records — email not configured via DNS

CAA records not checked

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

No SPF record found in TXT records

SPF helps prevent email spoofing. Add a TXT record starting with 'v=spf1'.

DNS resolution time: 20 ms

Got: 20 ms

A	162.125.248.21
AAAA	2620:100:6040:21::a27d:f815
CNAME	—
NS	ns-1191.awsdns-20.org, ns-1615.awsdns-09.co.uk, ns-473.awsdns-59.com, ns-817.awsdns-38.net
MX	—
TXT	—
CAA	Lookup not available with standard resolver

Resolved in 20 ms

Multiple A records provide failover if one server goes down.

Why this matters

Single A record means a single point of failure — if that IP goes down, your site is unreachable until DNS TTL expires.

Learn more ▾

Add multiple A records for round-robin failover, or use a managed DNS provider with health-checked failover (Route 53, Cloudflare, NS1). Short TTL (60-300s) lets clients recover faster on outages.

Source: SRE practice / DNS architecture

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

Why this matters

Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.

SPF helps prevent email spoofing. Add a TXT record starting with 'v=spf1'.

Why this matters

Without SPF, receiving servers can't validate sending IPs — your domain is easier to spoof in phishing.

Learn more ▾

SPF complements DMARC. Both should be published. SPF records list authorized sending IPs (e.g., `v=spf1 include:_spf.google.com ~all` for Google Workspace). After publishing, verify in Google Postmaster Tools or mxtoolbox.

Source: RFC 7208 (SPF)

Redirect Chain

1 redirect(s), 962 ms total

PASS

1 redirect(s), 962 ms total

Single redirect

Got: https://db.tt → https://www.dropbox.com (301)

WWW normalization redirect

Redirect overhead: 962 ms total

Got: 962 ms

Cross-domain redirect detected

https://db.tt

704 ms · HTTP/1.1

301

https://www.dropbox.com

259 ms · HTTP/1.1 FINAL

#	URL	Status	Time	Protocol	Server
1	https://db.tt	301	704 ms	HTTP/1.1	envoy
2	https://www.dropbox.com	200	259 ms	HTTP/1.1	envoy

See the visual redirect chain in the HTTP Probe tab →

A+

IPv6 Readiness

IPv6 reachable (1 ms)

PASS

IPv6 reachable (1 ms)

IPv6 is configured and reachable at 2620:100:6040:21::a27d:f815

Got: 1 ms connect

IPv6 Ready

AAAA Records 2620:100:6040:21::a27d:f815 Connection Reachable (1 ms)

A+

Crawlability

robots.txt present, sitemap with 10 URLs

PASS

robots.txt present, sitemap with 10 URLs

robots.txt is present

Got: 829 bytes

sitemap.xml is present

sitemap.xml is valid XML

sitemap.xml contains 10 entries

Sitemap index with 10 child sitemaps

robots.txt references sitemap

robots.txt 200 OK

Size 829 B Sitemaps referenced 1 User-agents *, Twitterbot, facebookexternalhit Blocking No — crawling allowed

User-agent: Twitterbot
Disallow:

User-agent: facebookexternalhit
Allow: /s/
Allow: /sh/
Allow: /scl/
Allow: /sc/

User-agent: *
Allow: /static/css/
Allow: /static/images/
Allow: /static/js/
Allow: /llms.txt
Disallow: /static/
Disallow: /password_expired
Disallow: /help/sl
Disallow: /help/vodafone
Disallow: /home*
Disallow: /package_files_uploaded_via_chrome
Disallow: /photos/app_store_link/
Disallow: /recover*
Disallow: /sharing/*
Disallow: /sharing/folders*
Disallow: /sharing/files*
Disallow: /requests*
Disallow: /account*
Disallow: /referrals*
Disallow: /downgrade*
Disallow: /developers-v1
Disallow: /developers/downloads/sdks/
Disallow: /developers/whats_new
Disallow: /reengageoptout/*
Disallow: /preview/
Disallow: /s/
Disallow: /sh/
Disallow: /scl/
Disallow: /sc/


Sitemap: https://www.dropbox.com/sitemapindex.xml

sitemap.xml 200 OK

Type Sitemap Index URLs 10 entries Valid XML Yes

Child Sitemaps:

A+

URL Variants

www/non-www, trailing slash, HTTP→HTTPS

PASS

www/non-www, trailing slash, HTTP→HTTPS

HTTP correctly 301-redirects to HTTPS

www / non-www

https://www.db.tt/

200https://db.tt/

HTTP → HTTPS

301http://db.tt/ → https://db.tt/

Consistent

HTTP Probe Timing

Total 697 ms — DNS, TCP, TLS, TTFB, content transfer breakdown

PASS

DNS Lookup

3 ms

TCP Connect

174 ms

TLS Handshake

178 ms

Time to First Byte

697 ms

Total Time

697 ms

Connection waterfall

DNS Lookup 3 ms TCP Connect 174 ms TLS Handshake 178 ms Server Processing 341 ms Content Transfer 0 ms

Domain Intelligence

Domain intelligence data not available

INFO

Domain intelligence data not available

RDAP and WHOIS lookup both failed

All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.