Infrastructure

· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.

SCORE

GRADE

FIX

REVIEW

PASS

INFO

Probed from New York, United Stated

302 Found

Checks

6 PASS 1 REVIEW 2 FIX

TLS Certificate Expiry & Recommendations

Action

8 days until leaf cert expires — 4 issues to address

FIX

Certificate validity

days left

0d 30d 60d 90d+

Renew urgently — under 14 days remaining

Recommended actions

Renew certificate — 8 days remaining
Submit your domain to hstspreload.org to be added to the Chrome preload list
Enable DNSSEC on your domain for DNS spoofing protection
Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy

CDN & Delivery

Action

No CDN detected

FIX

No CDN detected

A CDN can significantly improve load times for users around the world by caching content at edge nodes closer to them.

No CDN detected

Consider using a CDN to improve global delivery speed and reduce origin load.

Crawlability

Action

robots.txt present, sitemap with 0 URLs

REVIEW

robots.txt present, sitemap with 0 URLs

robots.txt is present

Got: 10240 bytes

sitemap.xml is present

sitemap.xml contains invalid XML

Search engines may not be able to parse the sitemap. Fix XML validation errors.

sitemap.xml is empty — no URLs found

An empty sitemap provides no value. Add <url> entries for your pages.

robots.txt does not reference a sitemap

Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.

Search engines may not be able to parse the sitemap. Fix XML validation errors.

Why this matters

An unparseable sitemap is silently ignored by Google — the URLs it advertises are never queued for crawl.

Learn more ▾

Google's sitemap parser is strict about XML validity. A single unescaped `&` or unclosed tag invalidates the whole file. Run your sitemap through a validator (Search Console's Sitemaps report flags it) and fix the offending entry. Most generators escape correctly; mistakes usually come from manually-written entries.

Source: sitemaps.org / Google Search Central

An empty sitemap provides no value. Add <url> entries for your pages.

Why this matters

An empty sitemap signals 'no content to index' to Google — actively harmful versus having no sitemap at all.

Learn more ▾

Google compares URLs in the sitemap against URLs it has crawled. An empty sitemap on a site with thousands of pages signals abandonment. Either populate it correctly (most CMSes auto-generate) or delete the file and let Google crawl normally.

Source: Google Search Central / sitemaps.org

Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.

Why this matters

robots.txt omits Sitemap: directive — crawlers must fetch /sitemap.xml by convention; reliable but missing the explicit hint.

Source: sitemaps.org

robots.txt 200 OK

Size 10240 B Sitemaps referenced 0 User-agents Blocking No — crawling allowed

<!DOCTYPE html>
<html lang="en" id="facebook" class="no_js">
<head><meta charset="utf-8" /><meta name="referrer" content="default" id="meta_referrer" /><script nonce="62U1pSOA">window._cstart=+new Date;</script><script nonce="62U1pSOA">function envFlush(e){function t(t){for(var n in e)t[n]=e[n]}window.requireLazy?window.requireLazy(["Env"],t):(window.Env=window.Env||{},t(window.Env))}envFlush({"ajaxpipe_token":"AXkGHP2I_dOrjoR0IDs","shouldLogCounters":true,"timeslice_categories":{"react_render":true,"reflow":true},"sample_continuation_stacktraces":true,"stack_trace_limit":30,"timesliceBufferSize":5000,"show_invariant_decoder":false,"compat_iframe_token":"AUdiXGVZ3trfUgheY_fdfAhcGQ0","isCQuick":false,"brsid":"7631289526278307501","promise_include_trace":false});</script><script nonce="62U1pSOA">window.openDatabase&&(window.openDatabase=function(){throw new Error});</script><script nonce="62U1pSOA">_btldr={};</script><script nonce="62U1pSOA">(function(){function e(e){return e.parentElement!==document.body&&e.parentElement!==document.head}function t(e){var t;return e.nodeName==="SCRIPT"||e.nodeName==="LINK"&&((t=n(e))==null?void 0:t.asyncCss)}function n(e){return e.dataset instanceof window.DOMStringMap?e.dataset:null}function r(r){var o;try{if(r.nodeType!==Node.ELEMENT_NODE)return}catch(e){return}if(!(e(r)||!t(r))){var a=(o=n(r))==null?void 0:o.bootloaderHash;if(a!=null&&a!==""){var i=null,l=function(){window._btldr[a]=1,i==null||i()};i=function(){r.removeEventListener("load",l),r.removeEventListener("error",l)},r.addEventListener("load",l),r.addEventListener("error",l)}}}Array.from(document.querySelectorAll('script,link[data-async-css="1"]')).forEach(function(e){return r(e)});var o=new MutationObserver(function(e,t){e.forEach(function(e){e.type==="childList"&&Array.from(e.addedNodes).forEach(function(e){r(e)})})});o.observe(document.getElementsByTagName("html")[0],{attributes:!1,childList:!0,subtree:!0})})();</script><style nonce="62U1pSOA"></style><script nonce="62U1pSOA">__DEV__=0;</script><noscript><meta http-equiv="refresh" content="0; URL=/login/?next=http%3A%2F%2Fwww.messenger.com%2Ft%2Frobots.txt&amp;_fb_noscript=1" /></noscript><title id="pageTitle">Messenger</title><meta name="bingbot" content="noarchive" /><link color="#0084ff" href="https://static.xx.fbcdn.net/rsrc.php/yf/r/PTQyJZmR6UE.svg" rel="mask-icon" /><link rel="icon" href="https://static.xx.fbcdn.net/rsrc.php/yO/r/qa11ER6rke_.ico" /><link type="text/css" rel="stylesheet" href="https://static.xx.fbcdn.net/rsrc.php/v5/yk/l/0,cross/pEVKO7CuQee.css" data-bootloader-hash="Teg4g7F" crossorigin="anonymous" />
<link type="text/css" rel="stylesheet" href="https://static.xx.fbcdn.net/rsrc.php/v5/yv/l/0,cross/yZ1noC5ssR6.css" data-bootloader-hash="5EY0zOB" crossorigin="anonymous" />
<link type="text/css" rel="stylesheet" href="https://static.xx.fbcdn.net/rsrc.php/v5/yI/l/0,cross/19ZkJl9REIW.css" data-bootloader-hash="k4k3GtN" crossorigin="anonymous" />
<script src="https://static.xx.fbcdn.net/rsrc.php/v4/y1/r/MvGdWb6L8S-.js" data-bootloader-hash="0l/T4vN" crossorigin="anonymous"></script>
<script nonce="62U1pSOA">requireLazy(["HasteSupportData"],function(m){m.handle({"clpData":{"1838142":{"r":1,"s":1},"1848815":{"r":10000,"s":1}},"gkxData":{"1174":{"result":false,"hash":null},"1221":{"result":false,"hash":null},"5163":{"result":false,"hash":null},"5415":{"result":false,"hash":null},"7742":{"result":false,"hash":null},"8068":{"result":false,"hash":null},"8869":{"result":false,"hash":null},"9063":{"result":false,"hash":null},"13382":{"result":false,"hash":null},"15745":{"result":false,"hash":null},"18719":{"result":false,"hash":null},"20935":{"result":false,"hash":null},"20936":{"result":false,"hash":null},"21043":{"result":false,"hash":null},"23984":{"result":false,"hash":null},"25572":{"result":false,"hash":null}},"justknobxData":{"2269":{"r":true},"3323":{"r":true},"3414":{"r":true},"5589":{"r":false},"1276":{"r":true},"2635":{"r":true}}})});requireLazy(["TimeSliceImpl","ServerJS"],function(TimeSlice,ServerJS){(new ServerJS()).handle({"define":[["cr:310",["RunWWW"],{"__rc":["RunWWW",null]},-1],["cr:1078",[],{"__rc":[null,null]},-1],["cr:1080",["unexpectedUseInComet"],{"__rc":["unexpectedUseInComet",null]},-1],["cr:1126",["TimeSliceImpl"],{"__rc":["TimeSliceImpl",null]},-1],["cr:3725",["clearTimeoutWWWOrMobile"],{"__rc":["clearTimeoutWWWOrMobile",null]},-1],["cr:4344",["setTimeoutWWWOrMobile"],{"__rc":["setTimeoutWWWOrMobile",null]},-1],["cr:6108",["CSS"],{"__rc":["CSS",null]},-1],["cr:6640",["PromiseImpl"],{"__rc":["PromiseImpl",null]},-1],["cr:7385",["clearIntervalWWW"],{"__rc":["clearIntervalWWW",null]},-1],["cr:7389",["setIntervalAcrossTransitionsWWW"],{"__rc":["setIntervalAcrossTransitionsWWW",null]},-1],["cr:7391",["setTimeoutAcrossTransitionsWWW"],{"__rc":["setTimeoutAcrossTransitionsWWW",null]},-1],["cr:8958",["FBJSON"],{"__rc":["FBJSON",null]},-1],["cr:8959",["DTSG"],{"__rc":["DTSG",null]},-1],["cr:8960",["DTSG_ASYNC"],{"__rc":["DTSG_ASYNC",null]},-1],["cr:696703",[],{"__rc":[null,null]},-1],["cr:135",["RunBlue"],{"__rc":["RunBlue",null]},-1],["cr:6669",["DataStore"],{"__rc":["DataStore",null]},-1],["URLFragmentPreludeConfig",[],{"hashtagRedirect":false,"fragBlacklist":["nonce","access_token","oauth_token","xs","checkpoint_data","code"]},137],["CometPersistQueryParams",[],{"relative":{},"domain":{}},6231],["CookieDomain",[],{"domain":"messenger.com"},6421],["GetAsyncParamsExtraData",[],{"extra_data":{}},7511],["AdsManagerReadRegions",[],{"excluded_endpoints":["\/am_tabular","\/ad_limits_insights","\/ads_reporting","\/column_suggestions","\/customaudiences","\/insights","\/reporting","\/edit","\/adspixels"],"excluded_preloaders":["AdsPEInsightsEdgeDataLoaderPreloader","AdsPEInsightsEdgeSummaryDataLoaderPreloader","AdsPEInsightsColumnPresetDataLoaderPreloader","AdsReportBuilderBusinessViewReportPreloader","AdsReportBuilderAdAccountViewReportPreloader","AdsReportBuilderManageUnifiedReportsPreloader"]},7950],["BootloaderConfig",[],{"deferBootloads":false,"enableLoadingUnavailableResources":true,"enableRetryOnStuckResource":false,"immediatesBugFixKillswitch":true,"jsRetries":[200,500],"jsRetryAbortNum":2,"jsRetryAbortTime":5,"silentDups":true,"timeout":60000,"tieredLoadingFromTier":100,"hypStep4":false,"btCutoffIndex":95,"fastPathForAlreadyRequired":true,"csrOn":false,"nonce":"62U1pSOA","shouldEnableProxyArgs":false,"translationRetries":[200,500],"translationRetryAbortNum":3,"translationRetryAbortTime":50},329],["CSSLoaderConfig",[],{"timeout":5000},619],["CookieCoreConfig",[],{"c_user":{"t":31536000},"cppo":{"t":86400},"dpr":{"t":604800},"hckd":{},"i_user":{"t":31536000},"locale":{"t":604800},"m_ls":{"t":34560000},"m_pixel_ratio":{"t":604800},"noscript":{},"presence":{"t":2592000},"sfau":{},"wd":{"t":604800},"x-referer":{},"x-src":{"t":1}},2104],["CurrentUserInitialData",[],{"ACCOUNT_ID":"0","USER_ID":"0","NAME":"","SHORT_NAME":null,"IS_BUSINESS_PERSON_ACCOUNT":false,"HAS_SECONDARY_BUSINESS_PERSON":false,"IS_FACEBOOK_WORK_ACCOUNT":false,"IS_INSTAGRAM_BUSINESS_PERSON":false,"IS_WABA_BUSINESS_PERSON":false,"IS_MESSENGER_ONLY_USER":false,"IS_DEACTIVATED_ALLOWED_ON_MESSENGER":false,"IS_MESSENGER_CALL_GUEST_USER":false,"IS_WORK_MESSENGER_CALL_GUEST_USER":false,"IS_WORKROOMS_USER":false,"APP_ID":"772021112871879","IS_BUSINESS_DOMAIN":false},270],["ServerNonce",[],{"ServerNonce":"Rw19UAbHTH2HR5_XqYfa0x"},141],["SiteData",[],{"server_revision":1037799039,"client_revision":1037799039,"push_phase":"C3","pkg_cohort":"BP:messengerdotcom_pkg","haste_session":"20564.BP:messengerdotcom_pkg.2.0...0","pr":1,"manifest_base_uri":"https:\/\/static.xx.fbcdn.net","manifest_origin":null,"manifest_version_prefix":null,"be_one_ahead":false,"is_rtl":false,"is_experimental_tier":false,"is_jit_warmed_up":true,"hsi":"7631289526278307501","semr_host_bucket":"3","bl_hash_version":2,"comet_env":0,"wbloks_env":false,"ef_page":null,"compose_bootloads":false,"spin":4,"__spin_r":1037799039,"__spin_b":"trunk","__spin_t":1776798052,"vip":"57.144.180.141"},317],["SprinkleConfig",[],{"param_name":"jazoest","version":2,"should_randomize":false},2111],["UserAgentData",[],{"browserArchitecture":"32","browserFullVersion":null,"browserMinorVersion":null,"browserName":"Unknown","browserVersion":null,"deviceName":"Unknown","engineName":"Unknown","engineVersion":null,"platformArchitecture":"32","platformName":"Unknown","platformVersion":null,"platformFullVersion":null},527],["PromiseUsePolyfillSetImmediateGK",[],{"www_always_use_polyfill_setimmediate":false},2190],["JSErrorLoggingConfig",[],{"appId":772021112871879,"extra":[],"reportInterval":50,"sampleWeight":1,"sampleWeightKey":"__jssesw","projectBlocklist":[]},2776],["DataStoreConfig",[],{"expandoKey":"__FB_STORE","useExpando":true},2915],["CookieCoreLoggingConfig",[],{"maximumIgnorableStallMs":16.67,"sampleRate":9.7e-5,"sampleRateClassic":1.0e-10,"sampleRateFastStale":1.0e-8},3401],["ImmediateImplementationExperiments",[],{"prefer_message_channel":true},3419],["UriNeedRawQuerySVConfig",[],{"uris":["dms.netmng.com","doubleclick.net","r.msn.com","watchit.sky.com","graphite.instagram.com","www.kfc.co.th","learn.pantheon.io","www.landmarkshops.in","www.ncl.com","s0.wp.com","www.tatacliq.com","bs.serving-sys.com","kohls.com","lazada.co.th","xg4ken.com","technopark.ru","officedepot.com.mx","bestbuy.com.mx","booking.com","nibio.no","myworkdayjobs.com","united-united.com","gcc.gnu.org"]},3871],["InitialCookieConsent",[],{"initialConsent":[1,2],"noCookies":false,"shouldShowCookieBanner":false,"shouldWaitForDeferredDatrCookie":false,"optedInIntegrations":["cloudfront_cdn","giphy_api","giphy_media","google_ads_pixel_legacy","google_double_click_uri_connect","google_double_click_uri_frame","google_fonts_font","google_universal_analytics_legacy","google_uri_script","linkedin_insight","mapbox_maps_api","nytimes_oembed","soundcloud_oembed","spotify_oembed","spreaker_oembed","ted_oembed","tenor_api","tenor_images","tenor_media","tiktok_oembed","twitter_analytics_pixel","twitter_legacy_embed","vimeo_oembed","youtube_embed","youtube_oembed","advertiser_hosted_pixel","airbus_sat","amazon_media","apps_for_office","arkose_captcha","aspnet_cdn","autodesk_fusion","bing_maps","bing_widget","boku_wal

sitemap.xml 200 OK

Type URL Set URLs 0 entries Valid XML No

A+

DNS Records

1 A records, 11 ms lookup

PASS

1 A records, 11 ms lookup

Resolves to 1 IPv4 address(es)

Got: 57.144.180.141

Single A record — no DNS redundancy

Multiple A records provide failover if one server goes down.

Has 1 IPv6 (AAAA) record(s)

Got: 2a03:2880:f35a:8d:face:b00c:0:2

4 nameserver(s) configured

Got: a.ns.facebook.com, c.ns.facebook.com, d.ns.facebook.com, b.ns.facebook.com

No MX records — email not configured via DNS

CAA records not checked

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

SPF record present in TXT

DNS resolution time: 11 ms

Got: 11 ms

A	57.144.180.141
AAAA	2a03:2880:f35a:8d:face:b00c:0:2
CNAME	—
NS	a.ns.facebook.com, c.ns.facebook.com, d.ns.facebook.com, b.ns.facebook.com
MX	—
TXT	SPF v=spf1 a ~all
CAA	Lookup not available with standard resolver

Resolved in 11 ms

Multiple A records provide failover if one server goes down.

Why this matters

Single A record means a single point of failure — if that IP goes down, your site is unreachable until DNS TTL expires.

Learn more ▾

Add multiple A records for round-robin failover, or use a managed DNS provider with health-checked failover (Route 53, Cloudflare, NS1). Short TTL (60-300s) lets clients recover faster on outages.

Source: SRE practice / DNS architecture

CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.

Why this matters

Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.

Redirect Chain

1 redirect(s), 401 ms total

PASS

1 redirect(s), 401 ms total

Single redirect

Got: https://m.me → https://www.messenger.com/ (302)

WWW normalization redirect

Uses 302 (temporary) redirect

If permanent, use 301 instead.

Got: https://m.me

Cross-domain redirect detected

https://m.me

120 ms · HTTP/1.1

302

https://www.messenger.com/

281 ms · HTTP/1.1 FINAL

#	URL	Status	Time	Protocol	Server
1	https://m.me	302	120 ms	HTTP/1.1
2	https://www.messenger.com/	200	281 ms	HTTP/1.1

See the visual redirect chain in the HTTP Probe tab →

If permanent, use 301 instead.

Why this matters

302 (Found) is for genuinely temporary redirects — if this redirect is permanent, switch to 301 to preserve SEO equity.

Learn more ▾

Search engines treat 302 as temporary, keeping the original URL indexed and not transferring full link equity to the destination. Use 301 (Moved Permanently) for permanent redirects (HTTP→HTTPS, www-vs-non-www, URL restructures).

Source: Google Search Central

A+

IPv6 Readiness

IPv6 reachable (1 ms)

PASS

IPv6 reachable (1 ms)

IPv6 is configured and reachable at 2a03:2880:f35a:8d:face:b00c:0:2

Got: 1 ms connect

IPv6 Ready

AAAA Records 2a03:2880:f35a:8d:face:b00c:0:2 Connection Reachable (1 ms)

A+

URL Variants

www/non-www, trailing slash, HTTP→HTTPS

PASS

www/non-www, trailing slash, HTTP→HTTPS

www/non-www redirect configured correctly (preferred: non-www)

HTTP correctly 301-redirects to HTTPS

www / non-www

302https://www.m.me/

200https://m.me/

Preferred variant: non-www

HTTP → HTTPS

301http://m.me/ → https://m.me/

Consistent

A+

Domain Intelligence

m.me — via RegistrarSafe, LLC, 16 years, 1 months old

PASS

m.me — via RegistrarSafe, LLC, 16 years, 1 months old

Domain registered until May 20, 2034 (8 years, 2 months remaining)

Registrar: RegistrarSafe, LLC

Registrar lock is enabled

Domain cannot be transferred without explicit unlock from the registrar. This protects against unauthorized transfers.

Domain expiry

2895 days

May 20, 2034

SSL certificate

8 days

Issued by DigiCert Inc

Domain age

16 years, 1 months

Registered May 20, 2010

DNSSEC

Status unknown

Protects against DNS spoofing

Hosting

Unknown

2a03:2880:f003:c07:face:b00c:0:2

Registrar

RegistrarSafe, LLC

Locked 4 NS records

Expiry timeline

Today

+1 year

Domain expiry SSL expiry Danger zone (≤30 days)

Recommended actions

Renew the TLS certificate or verify auto-renewal is working

Registrar RegistrarSafe, LLC

Created May 20, 2010 (16 years, 1 months ago)

Expires May 20, 2034 (8 years, 2 months)

Last Updated June 2, 2025

Name Servers b.ns.facebook.com, a.ns.facebook.com, c.ns.facebook.com, d.ns.facebook.com

Registrant Meta Platforms, Inc.

Hosting

IP Address 2a03:2880:f003:c07:face:b00c:0:2

Data source: whois (0.5s)

Domain cannot be transferred without explicit unlock from the registrar. This protects against unauthorized transfers.

Why this matters

Registrar lock (clientTransferProhibited et al.) prevents unauthorized domain transfers — strongest defense against domain hijacking.

Source: ICANN / domain-security best practice

A+

HTTP Probe Timing

Total 125 ms — DNS, TCP, TLS, TTFB, content transfer breakdown

PASS

DNS Lookup

5 ms

TCP Connect

7 ms

TLS Handshake

10 ms

Time to First Byte

125 ms

Total Time

126 ms

Connection waterfall

DNS Lookup 5 ms TCP Connect 7 ms TLS Handshake 10 ms Server Processing 104 ms Content Transfer 0 ms

All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.