www.htmlyse.com - Home

Test DNS, SSL/TLS, HTTP and HTML

Test results for zonemaster.iis.se

Scanned on: Fri Sep 4 15:51:52 2020 GMT. Tested in 124 seconds

DNS Report

Name TTL Type Data
zonemaster.iis.se 59 A 79.99.1.121
zonemaster.iis.se 60 AAAA 2a02:750:7:0:0:0:0:817

SSL/TLS Report

 Further IP addresses:   2a02:750:7::817 
 A record via            supplied IP "79.99.1.121"
 rDNS (79.99.1.121):     smtp.goto10.se.
 Service detected:       HTTP


 SSL/TLS protocols 
 SSLv2      not offered (OK)
 SSLv3      not offered (OK)
 TLS 1      not offered
 TLS 1.1    offered
 TLS 1.2    offered (OK)
 TLS 1.3    not offered -- downgraded
 NPN/SPDY   h2, http/1.1 (advertised)
 ALPN/HTTP2 h2, http/1.1 (offered)

 SSL/TLS server implementation bugs 

 No bugs found.

 Cipher categories 

 NULL ciphers (no encryption)                  not offered (OK) -- NULL:eNULL
 Anonymous NULL Ciphers (no authentication)    not offered (OK) -- aNULL:ADH
 Export ciphers (w/o ADH+NULL)                 not offered (OK) -- EXPORT:!ADH:!NULL
 LOW: 64 Bit + DES encryption (w/o export)     not offered (OK) -- LOW:DES:!ADH:!EXP:!NULL
 Weak 128 Bit ciphers (SEED, IDEA, RC[2,4])    not offered (OK) -- MEDIUM:!aNULL:!AES:!CAMELLIA:!ARIA:!CHACHA20:!3DES
 Triple DES Ciphers (Medium)                   not offered (OK) -- 3DES:!aNULL:!ADH
 High encryption (AES+Camellia, no AEAD)       offered (OK) -- HIGH:!NULL:!aNULL:!DES:!3DES:!AESGCM:!CHACHA20:!AESGCM:!CamelliaGCM:!AESCCM8:!AESCCM
 Strong encryption (AEAD ciphers)              offered (OK) -- AESGCM:CHACHA20:AESGCM:CamelliaGCM:AESCCM8:AESCCM


 Robust (perfect) forward secrecy, (P)FS -- omitting Null Authentication/Encryption, 3DES, RC4 

 PFS is offered (OK)          ECDHE-RSA-AES256-GCM-SHA384 
                              ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA 
                              DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES256-SHA256 
                              DHE-RSA-AES256-SHA ECDHE-RSA-AES128-GCM-SHA256 
                              DHE-RSA-AES128-GCM-SHA256 
 Elliptic curves offered:     secp384r1 


 Server preferences 

 Has server cipher order?     yes (OK)
 Negotiated protocol          TLSv1.2
 Negotiated cipher            ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Cipher order
    TLSv1.1:   ECDHE-RSA-AES256-SHA DHE-RSA-AES256-SHA 
    TLSv1.2:   ECDHE-RSA-AES256-GCM-SHA384 ECDHE-RSA-AES128-GCM-SHA256 
               DHE-RSA-AES256-GCM-SHA384 DHE-RSA-AES128-GCM-SHA256 
               ECDHE-RSA-AES256-SHA384 ECDHE-RSA-AES256-SHA 
               DHE-RSA-AES256-SHA256 DHE-RSA-AES256-SHA 


 Server defaults (Server Hello) 

 TLS extensions (standard)    "server name/#0" "renegotiation info/#65281"
                              "EC point formats/#11" "status request/#5"
                              "heartbeat/#15" "next protocol/#13172"
                              "application layer protocol negotiation/#16"
 Session Ticket RFC 5077 hint (no lifetime advertised)
 SSL Session ID support       yes
 Session Resumption           Tickets: yes, ID: yes
 TLS clock skew               Random values, no fingerprinting possible 
 Signature Algorithm          SHA256 with RSA
 Server key size              RSA 2048 bits
 Server key usage             Digital Signature, Key Encipherment
 Server extended key usage    TLS Web Server Authentication, TLS Web Client Authentication
 Serial / Fingerprints        0447D9AFDB5C1D95A6B94C822F739724796D / SHA1 3FBBC28ABEFC6E16766AA6EFBE1C81953658D7C3
                              SHA256 E405A4BB7378F8C22689AFE0B593EF112CB5CD22F464698C609AFA3AE940658D
 Common Name (CN)             zonemaster.iis.se (CN in response to request w/o SNI: arkiv.internetmuseum.se)
 subjectAltName (SAN)         zonemaster.iis.se 
 Issuer                       Let's Encrypt Authority X3 (Let's Encrypt from US)
 Trust (hostname)             Ok via SAN and CN (SNI mandatory)
 Chain of trust               Ok   
 EV cert (experimental)       no 
 Certificate Validity (UTC)   55 >= 30 days (2020-08-01 06:47 --> 2020-10-30 06:47)
 # of certificates provided   2
 Certificate Revocation List  --
 OCSP URI                     http://ocsp.int-x3.letsencrypt.org
 OCSP stapling                offered
 OCSP must staple extension   --
 DNS CAA RR (experimental)    available - please check for match with "Issuer" above
                              issue=amazon.com, issue=digicert.com,
                              issue=letsencrypt.org, issue=sectigo.com
 Certificate Transparency     yes (certificate extension)


 HTTP header response @ "/" 

 HTTP Status Code             200 OK
 HTTP clock skew              +64 sec from localtime
 Strict Transport Security    730 days=63072000 s, includeSubDomains
 Public Key Pinning           --
 Server banner                nginx/1.10.3 (Ubuntu)
 Application banner           --
 Cookie(s)                    1 issued: 1/1 secure, NOT HttpOnly
 Security headers             X-Frame-Options SAMEORIGIN
                              X-XSS-Protection 1; mode=block
 Reverse Proxy banner         X-Cache: EXPIRED


 SSL/TLS vulnerabilities 

 Heartbleed (CVE-2014-0160)                not vulnerable (OK), timed out
 CCS (CVE-2014-0224)                       not vulnerable (OK)
 Ticketbleed (CVE-2016-9244), experiment.  not vulnerable (OK), no session ticket extension
 ROBOT                                     Server does not support any cipher suites that use RSA key transport
 Secure Renegotiation (CVE-2009-3555)      not vulnerable (OK)
 Secure Client-Initiated Renegotiation     not vulnerable (OK)
 CRIME, TLS (CVE-2012-4929)                not vulnerable (OK)
 BREACH (CVE-2013-3587)                    potentially NOT ok, uses gzip HTTP compression. - only supplied "/" tested
                                           Can be ignored for static pages or if no secrets in the page
 POODLE, SSL (CVE-2014-3566)               not vulnerable (OK)
 TLS_FALLBACK_SCSV (RFC 7507)              Downgrade attack prevention supported (OK)
 SWEET32 (CVE-2016-2183, CVE-2016-6329)    not vulnerable (OK)
 FREAK (CVE-2015-0204)                     not vulnerable (OK)
 DROWN (CVE-2016-0800, CVE-2016-0703)      not vulnerable on this host and port (OK)
                                           make sure you don't use this certificate elsewhere with SSLv2 enabled services
                                           https://censys.io/ipv4?q=E405A4BB7378F8C22689AFE0B593EF112CB5CD22F464698C609AFA3AE940658D
                                           could help you to find out
 LOGJAM (CVE-2015-4000), experimental      not vulnerable (OK): no DH EXPORT ciphers, no common primes detected
 BEAST (CVE-2011-3389)                     no SSL3 or TLS1 (OK)
 LUCKY13 (CVE-2013-0169), experimental     potentially VULNERABLE, uses cipher block chaining (CBC) ciphers with TLS. Check patches
 RC4 (CVE-2013-2566, CVE-2015-2808)        no RC4 ciphers detected (OK)


 Tested 364 ciphers, ordered by encryption strength 

Hexcode  Cipher Suite Name (OpenSSL)       KeyExch.   Encryption  Bits     Cipher Suite Name (RFC)
-----------------------------------------------------------------------------------------------------------------------------
 xc030   ECDHE-RSA-AES256-GCM-SHA384       ECDH 384   AESGCM      256      TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384              
 xc028   ECDHE-RSA-AES256-SHA384           ECDH 384   AES         256      TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384              
 xc014   ECDHE-RSA-AES256-SHA              ECDH 384   AES         256      TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA                 
 x9f     DHE-RSA-AES256-GCM-SHA384         DH 2048    AESGCM      256      TLS_DHE_RSA_WITH_AES_256_GCM_SHA384                
 x6b     DHE-RSA-AES256-SHA256             DH 2048    AES         256      TLS_DHE_RSA_WITH_AES_256_CBC_SHA256                
 x39     DHE-RSA-AES256-SHA                DH 2048    AES         256      TLS_DHE_RSA_WITH_AES_256_CBC_SHA                   
 xc02f   ECDHE-RSA-AES128-GCM-SHA256       ECDH 384   AESGCM      128      TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256              
 x9e     DHE-RSA-AES128-GCM-SHA256         DH 2048    AESGCM      128      TLS_DHE_RSA_WITH_AES_128_GCM_SHA256                


 Ciphers per protocol, ordered by encryption strength 

Hexcode  Cipher Suite Name (OpenSSL)       KeyExch.   Encryption  Bits     Cipher Suite Name (RFC)
-----------------------------------------------------------------------------------------------------------------------------
TLS 1.3  
TLS 1.2  
 xc030   ECDHE-RSA-AES256-GCM-SHA384       ECDH 384   AESGCM      256      TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384              
 xc028   ECDHE-RSA-AES256-SHA384           ECDH 384   AES         256      TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384              
 xc014   ECDHE-RSA-AES256-SHA              ECDH 384   AES         256      TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA                 
 x9f     DHE-RSA-AES256-GCM-SHA384         DH 2048    AESGCM      256      TLS_DHE_RSA_WITH_AES_256_GCM_SHA384                
 x6b     DHE-RSA-AES256-SHA256             DH 2048    AES         256      TLS_DHE_RSA_WITH_AES_256_CBC_SHA256                
 x39     DHE-RSA-AES256-SHA                DH 2048    AES         256      TLS_DHE_RSA_WITH_AES_256_CBC_SHA                   
 xc02f   ECDHE-RSA-AES128-GCM-SHA256       ECDH 384   AESGCM      128      TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256              
 x9e     DHE-RSA-AES128-GCM-SHA256         DH 2048    AESGCM      128      TLS_DHE_RSA_WITH_AES_128_GCM_SHA256                
TLS 1.1  
 xc014   ECDHE-RSA-AES256-SHA              ECDH 384   AES         256      TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA                 
 x39     DHE-RSA-AES256-SHA                DH 2048    AES         256      TLS_DHE_RSA_WITH_AES_256_CBC_SHA                   
TLS 1  
SSLv3  
SSLv2  

 Client simulations 

 Android 2.3.7                No connection
 Android 4.0.4                No connection
 Android 4.1.1                No connection
 Android 4.2.2                No connection
 Android 4.3                  No connection
 Android 4.4.2                TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Android 5.0.0                TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Android 6.0                  TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Android 7.0                  TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Chrome 27 Win 7              TLSv1.1 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Chrome 28 Win 7              TLSv1.1 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Chrome 29 Win 7              TLSv1.1 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Chrome 30 Win 7              TLSv1.2 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Chrome 31 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 32 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 33 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 34 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 35 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 36 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 37 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 39 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 40 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 42 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 43 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 45 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 47 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 48 OS X               TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 49 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 49 XP SP3             TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 50 Win 7              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Chrome 51 Win 7              TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Chrome 57 Win 7              TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Chrome 65 Win 7              TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Chrome 69 Win 7              TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Chrome 70 Win 10             TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Firefox 10.0.12 ESR Win 7    No connection
 Firefox 17.0.7 ESR Win 7     No connection
 Firefox 21 Fedora 19         No connection
 Firefox 21 Win 7             No connection
 Firefox 22 Win 7             No connection
 Firefox 24.2.0 ESR Win 7     No connection
 Firefox 24 Win 7             No connection
 Firefox 26 Win 8             No connection
 Firefox 27 Win 8             TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 29 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 30 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 31.3.0 ESR Win 7     TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 31 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 32 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 34 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 35 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 37 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 39 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 41 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 42 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 44 OS X              TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 45 Win 7             TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 46 Win 7             TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 47 Win 7             TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Firefox 49 Win 7             TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Firefox 49 XP SP3            TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Firefox 53 Win 7             TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Firefox 59 Win 7             TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Firefox 62 Win 7             TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 IE 6 XP                      No connection
 IE 7 Vista                   No connection
 IE 8-10 Win 7                No connection
 IE 8 Win 7                   No connection
 IE 8 XP                      No connection
 IE 9 Win 7                   No connection
 IE 10 Win Phone 8.0          No connection
 IE 11 Win 7                  TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 2048 bit DH
 IE 11 Win 8.1                TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 2048 bit DH
 IE 11 Win Phone 8.1          TLSv1.2 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 IE 11 Win Phone 8.1 Update   TLSv1.2 DHE-RSA-AES256-GCM-SHA384, 2048 bit DH
 IE 11 Win 10                 TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 IE 11 Win 10 Preview         TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Edge 12 Win 10               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Edge 13 Win 10               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Edge 13 Win Phone 10         TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Edge 15 Win 10               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Opera 12.15 Win 7            No connection
 Opera 15 Win 7               TLSv1.1 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Opera 16 Win 7               TLSv1.1 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Opera 17 Win 7               TLSv1.2 ECDHE-RSA-AES256-SHA, 384 bit ECDH (P-384)
 Safari 5.1.9 OS X 10.6.8     No connection
 Safari 5 iOS 5.1.1           TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 6.0.4 OS X 10.8.4     No connection
 Safari 6 iOS 6.0.1           TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 7 iOS 7.1             TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 7 OS X 10.9           TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 8 iOS 8.0 Beta        TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 8 iOS 8.4             TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 8 OS X 10.10          TLSv1.2 ECDHE-RSA-AES256-SHA384, 384 bit ECDH (P-384)
 Safari 9 iOS 9               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Safari 9 OS X 10.11          TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Safari 10 iOS 10             TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Safari 10 OS X 10.12         TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Tor 17.0.9 Win 7             No connection
 Apple ATS 9 iOS 9            TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Baidu Jan 2015               No connection
 BingBot Dec 2013             No connection
 BingPreview Dec 2013         No connection
 BingPreview Jun 2014         No connection
 BingPreview Jan 2015         TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Googlebot Oct 2013           No connection
 Googlebot Jun 2014           No connection
 Googlebot Feb 2015           TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Googlebot Feb 2018           TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Yahoo Slurp Oct 2013         No connection
 Yahoo Slurp Jun 2014         TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Yahoo Slurp Jan 2015         TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 YandexBot 3.0                No connection
 YandexBot May 2014           No connection
 YandexBot Sep 2014           TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 YandexBot Jan 2015           TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Java 6u45                    No connection
 Java 7u25                    No connection
 Java 8b132                   TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Java 8u111                   TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Java 8u161                   TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 Java 8u31                    TLSv1.2 ECDHE-RSA-AES128-GCM-SHA256, 384 bit ECDH (P-384)
 Java 9.0.4                   TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 OpenSSL 0.9.8y               No connection
 OpenSSL 1.0.1h               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 OpenSSL 1.0.1l               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)
 OpenSSL 1.0.2e               TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, 384 bit ECDH (P-384)


Security HTTP Headers

HTTP Strict Transport Security (HSTS)   offered (OK)
Content Security Policy (CSP)           not offered (NOT ok)
X-Frame-Options                         offered (OK)
X-XSS-Protection                        offered (OK)
X-Content-Type-Options                  not offered
Expect-CT                               not offered
Referrer Policy                         not offered
Feature Policy                          not offered
Web Server Version Disclosure           offered (NOT ok)
Web Application Disclosure              not offered (OK)
HTTP Public Key Pins (HPKP)             not offered, deprecated

Connection Performance
Keep Alive Connection                   offered (OK)
Content Encoding (Compression)          offered (Gzip) OK, for static pages or if no secrets in the page

Raw HTTP Headers

HTTP/1.1 200 OK
Cache-Control public, max-age=60, s-maxage=60
Connection keep-alive
Content-Encoding gzip
Content-Type text/html; charset=UTF-8
Date Fri, 04 Sep 2020 15:50:53 GMT
Link <https://zonemaster.iis.se/>; rel=shortlink
Server nginx/1.10.3 (Ubuntu)
Strict-Transport-Security max-age=63072000; includeSubdomains
Vary Accept-Encoding
X-Cache HIT
X-Frame-Options SAMEORIGIN
X-XSS-Protection 1; mode=block

Cleaned HTML

<!DOCTYPE html>
<html lang="en-US">
<head>
<meta charset="utf-8" />
<title>Zonemaster</title>
<meta name="description" content="Zonemaster hjälper dig att kontrollera hur din webbplats mår. Testa din DNS server och upptäck fel." />
<meta name="author" content="" />
<meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0" />
<link rel='dns-prefetch' href='//fonts.googleapis.com' />
<link rel='dns-prefetch' href='//s.w.org' />
<link rel='stylesheet' id='wp-block-library-css' href='https://zonemaster.iis.se/wordpress/wp-includes/css/dist/block-library/style.min.css' type='text/css' media='all' />
<link rel='stylesheet' id='iis-footer-css' href='https://zonemaster.iis.se/wordpress/wp-content/plugins/iis-footer/public/css/iis-footer-public.css?ver=1.1.8' type='text/css' media='all' />
<link rel='stylesheet' id='iis-pack-css' href='https://zonemaster.iis.se/wordpress/wp-content/plugins/iis-pack/public/css/iis-pack-public.9d6c9b18.min.css' type='text/css' media='screen' />
<link rel='stylesheet' id='open-sans-css' href='https://fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400italic%2C600italic%2C300%2C400%2C600&amp;subset=latin%2Clatin-ext&amp;display=fallback&amp;' type='text/css' media='all' />
<link rel='stylesheet' id='app-css-css' href='https://zonemaster.iis.se/wordpress/wp-content/themes/zonemaster-iis-frontend/css/app.1e1cd00b.min.css' type='text/css' media='all' />
<script type='text/javascript' src='https://zonemaster.iis.se/wordpress/wp-content/plugins/iis-footer/public/js/iis-footer-public.js?ver=1.1.8'></script>
<link rel='https://api.w.org/' href='https://zonemaster.iis.se/wp-json/' />
<link rel="EditURI" type="application/rsd+xml" title="RSD" href="https://zonemaster.iis.se/wordpress/xmlrpc.php?rsd" />
<link rel="wlwmanifest" type="application/wlwmanifest+xml" href="https://zonemaster.iis.se/wordpress/wp-includes/wlwmanifest.xml" />
<meta name="generator" content="WordPress 5.4.2" />
<link rel="canonical" href="https://zonemaster.iis.se/en/" />
<link rel='shortlink' href='https://zonemaster.iis.se/' />
<link rel="alternate" type="application/json+oembed" href="https://zonemaster.iis.se/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fzonemaster.iis.se%2Fen%2F" />
<link rel="alternate" type="text/xml+oembed" href="https://zonemaster.iis.se/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fzonemaster.iis.se%2Fen%2F&amp;format=xml" />
<script>
<![CDATA[
window.onload = function() {
document.body.insertAdjacentHTML('afterbegin', '<div class="m-cookie-disclaimer js-cookie-disclaimer"> <div role="alert" class="m-cookie-disclaimer__wrapper m-alert m-alert--info m-alert--dismissable js-dismiss-alert"> <div class="m-cookie-disclaimer__inner"> <div class="m-cookie-disclaimer__inner-first"> <p class="m-cookie-disclaimer__text">På Zonemaster använder vi kakor (cookies) för att löpande förbättra webbplatsen. <a href="https://internetstiftelsen.se/om-webbplatsen/kakor/">Läs mer om hur Zonemaster använder kakor<\/a>.<\/p><\/div><div class="m-cookie-disclaimer__inner-second"> <button id="js-accept-cookies" " class="a-button a-button--is-static " ><span class="a-button__text ">Jag förstår<\/span><\/button><\/div><\/div><\/div><\/div>');
iis_cookie_bar();
}
]]>
</script>
<meta property="og:url" content="https://zonemaster.iis.se/en/" />
<meta property="og:type" content="website" />
<meta property="og:image" content="https://zonemaster.iis.se/wordpress/wp-content/uploads/2016/06/stoplights.png" />
<meta property="og:image:width" content="213" />
<meta property="og:image:height" content="386" />
<meta property="og:title" content="Zonemaster" />
<meta property="og:description" content="Zonemaster hjälper dig att kontrollera hur din webbplats mår. Testa din DNS server och upptäck fel." />
<link rel="alternate" href="https://zonemaster.iis.se/" hreflang="sv" />
<link rel="alternate" href="https://zonemaster.iis.se/en/" hreflang="en" />
<link rel="icon" href="https://zonemaster.iis.se/wordpress/wp-content/uploads/2016/10/cropped-zm-logo-512-32x32.png" sizes="32x32" />
<link rel="icon" href="https://zonemaster.iis.se/wordpress/wp-content/uploads/2016/10/cropped-zm-logo-512-192x192.png" sizes="192x192" />
<link rel="apple-touch-icon" href="https://zonemaster.iis.se/wordpress/wp-content/uploads/2016/10/cropped-zm-logo-512-180x180.png" />
<meta name="msapplication-TileImage" content="https://zonemaster.iis.se/wordpress/wp-content/uploads/2016/10/cropped-zm-logo-512-270x270.png" />
<style>
<![CDATA[
.cls-1{opacity:0.1;}.cls-2-all{fill:#575756;} .red-all{fill:#ff4069;} .orange-all{fill:#f99963;} .green-all{fill:#55c7b4;}
]]>
</style>
</head>
<body class="home page-template page-template-zonemaster page-template-page-start page-template-zonemasterpage-start-php page page-id-8 no-js zm">
<div class="hero row align-middle hero-inner">
<div class="row align-middle"><a href="/">
<h1 class="hero-title">Zonemaster</h1>
</a></div>
<div class="hero-status"></div>
</div>
<div class="site-wrapper">
<div class="row align-center align-middle">
<div class="columns">
<ul class="tabs white" data-tabs="" id="test-input-tabs">
<li class="tabs-title is-active"><a href="/?tab=tdc#domain_check" aria-selected="&quot;true&quot;">Domain check</a></li>
<li class="tabs-title"><a href="/?tab=tpd#pre_delegated">Pre-delegated domain check</a></li>
<li class="tabs-title hide" id="test-result-tab"><a href="/?resultid=&amp;tab=ttp#test_progress" class="js-tab-test-progress">Test result</a></li>
</ul>
</div>
<div class="columns shrink">
<div class="title-bar hide-for-large" data-responsive-toggle="top-bar-menu" data-hide-for="large"><a href="#" class="float-right" data-toggle="" id="title-bar-mobile-menu"><span class="burger-icon"></span></a></div>
<div class="top-bar top-bar-right" id="top-bar-menu">
<ul id="menu-main-menu" class="vertical medium-horizontal menu" data-responsive-menu="accordion large-dropdown">
<li id="menu-item-29" class="menu-item menu-item-type-post_type menu-item-object-page menu-item-29"><a href="https://zonemaster.iis.se/en/common-questions/">Common questions</a></li>
<li class="lang-item lang-item-2 lang-item-sv lang-item-first"><a lang="sv-SE" hreflang="sv-SE" href="https://zonemaster.iis.se/">Svenska</a></li>
</ul>
</div>
</div>
</div>
<div class="tabs-content" data-tabs-content="test-input-tabs">
<div class="tabs-panel is-active full-width primary row align-center" id="domain_check">
<form id="form_domain_check" method="post" class="test-form js-domain-check small-12 medium-11 large-10 xlarge-8 xxlarge-7 column" name="form_domain_check">
<p class="text-center lead">Test your DNS server today.</p>
<div class="text-center"><span>Option - check domain with</span> :&nbsp;<input class="js-check-ipv4" id="check_ip_v4_domain_check" name="check_ip_v4" type="checkbox" checked="checked" value="1" /><label for="check_ip_v4_domain_check">IPv4</label> <input class="js-check-ipv6" id="check_ip_v6_domain_check" name="check_ip_v6" type="checkbox" checked="checked" value="1" /><label for="check_ip_v6_domain_check">IPv6</label></div>
<div class="input-group large"><input type="text" class="input-group-field" name="zone_tld" id="zone_tld_domain_check" placeholder="Input zone.tld" required="" value="" />
<div class="input-group-button"><input type="submit" class="button submit-zone" id="submit_zone_domain_check" value="Test Now" /></div>
<input type="hidden" id="tld_zonemaster" name="tld_zonemaster" value="178bc3732e" /><input type="hidden" name="_wp_http_referer" value="/en/" /></div>
</form>
</div>
<div class="tabs-panel full-width primary" id="pre_delegated">
<div class="row align-center">
<form id="form_pre_delegated" method="post" class="test-form js-pre-delegated-check small-12 medium-11 large-10 xlarge-8 xxlarge-7 column" name="form_pre_delegated">
<p class="text-center lead">Test your DNS server today. <span class="hide-if-no-js"><a data-open="what-is-predelegated"><span class="js-header-pre-faq"></span></a></span></p>
<p class="text-center js-pre-zone-required">Input zone.tld</p>
<div class="input-group large"><input type="text" name="zone_tld" id="zone_tld_pre_delegated" placeholder="zone.tld" required="" value="" /></div>
<input type="hidden" id="tld_zonemaster" name="tld_zonemaster" value="178bc3732e" /><input type="hidden" name="_wp_http_referer" value="/en/" />
<div class="text-center"><button type="submit" class="hide"></button> <button type="submit" name="get_data_from_parent_zone" class="success button js-get-data-from-parent-zone">Fetch data from parent zone</button></div>
<div class="js-input-nameserver-wrap">
<p class="text-center">Nameservers (up to 30)</p>
<div class="row js-ns-container">
<div class="small-6 columns"><input type="text" name="field_ns[]" value="" placeholder="NS" class="js-field-blur" /></div>
<div class="small-6 columns input-group"><input type="text" class="input-group-field js-field-ip" name="field_ip[]" value="" placeholder="IP" />
<div class="input-group-button"><button type="submit" name="del_ns_field" value="0" class="alert button js-remove-nameservers">X</button></div>
</div>
</div>
</div>
<div><button type="submit" name="add_ns_field" class="expanded button js-add-nameserver-button">+ Add more nameservers</button></div>
<p class="text-center">Digests</p>
<div class="js-input-ds-list"></div>
<div><button type="submit" name="add_digest_field" class="expanded button js-digest-button">+ Add row for digest</button></div>
<div class="text-center"><span>Option - check domain with</span> :&nbsp;<input class="js-check-ipv4" id="check_ip_v4_predelegated" name="check_ip_v4" type="checkbox" checked="checked" value="1" /><label for="check_ip_v4_predelegated">IPv4</label> <input class="js-check-ipv6" id="check_ip_v6_predelegated" name="check_ip_v6" type="checkbox" checked="checked" value="1" /><label for="check_ip_v6_predelegated">IPv6</label></div>
<div class="large row align-center columns medium-6"><input type="submit" class="button expanded submit-zone" id="submit_zone_pre_delegated" value="Test Now" /></div>
<div class="callout show-if-no-js js-append-to-what-is-predelegated">
<h1 id="header-pre-faq">What is pre-delegated domain check?</h1>
<p>An pre-delegated domain test is a test performed on a domain that can (but need not) be fully published in DNS.</p>
<p>This can be very useful if you are considering moving your domain from one registrar to another. Let us take, for example, the domain example.se being moved from the name server ‘ns.nic.se’ to the name server ‘ns.iis.se’.</p>
<p>In this case, you could run an undelegated domain test on the domain (example.se) with the name server you are moving to (ns.iis.se) BEFORE you go through with the move.</p>
<p>When the test shows green, you can be fairly certain that your domain’s new home is able to answer questions about your domain. However, there may still be errors in the zone data that this test does not know.</p>
</div>
</form>
</div>
<div class="reveal" id="what-is-predelegated" data-reveal="" data-v-offset="50"><button class="close-button" data-close="" aria-label="Close modal" type="button"><span aria-hidden="true">×</span></button></div>
</div>
<div class="tabs-panel full-width primary hide" id="test_progress">
<div class="progress-area" id="progressarea"></div>
<div class="js-hide results-area" id="resultsarea"></div>
</div>
</div>
<div class="hide row js-ns-container" id="nameservers_html">
<div class="small-6 columns"><input type="text" name="field_ns[]" value="" placeholder="NS" class="js-field-blur" /></div>
<div class="small-6 columns input-group"><input type="text" class="input-group-field js-field-ip" name="field_ip[]" value="" placeholder="IP" />
<div class="input-group-button"><button type="submit" name="del_ns_field" value="0" class="alert button js-remove-nameservers">X</button></div>
</div>
</div>
<div class="hide row js-digest-container" id="digests_html">
<div class="small-6 medium-3 columns"><input type="text" class="js-key-tag" name="field_key_tag[]" value="" placeholder="Key tag" /></div>
<div class="small-6 medium-3 columns"><select name="field_algorithm[]" class="js-algorithm">
<option value=""></option>
<option value="3">DSA/SHA1</option>
<option value="5">RSA/SHA1</option>
<option value="6">DSA-NSEC3-SHA1</option>
<option value="7">RSASHA1-NSEC3-SHA1</option>
<option value="8">RSA/SHA-256</option>
<option value="9">RSA/SHA-512</option>
</select></div>
<div class="small-6 medium-2 columns"><select name="field_digest_type[]" class="js-digest-type">
<option value=""></option>
<option value="1">SHA-1</option>
<option value="2">SHA-256</option>
</select></div>
<div class="small-6 medium-4 columns input-group"><input type="text" class="input-group-field js-digest" name="field_digest[]" value="" placeholder="Digest" />
<div class="input-group-button"><button type="submit" name="del_digest_field" value="0" class="alert button js-remove-digests">X</button></div>
</div>
</div>
<div class="page-wrapper row start-page-wp-content align-bottom">
<div class="small-12 medium-7 column">
<h2>About Zonemaster</h2>
<p>Give your domain a complete physical! Zonemaster helps you to control how your website is doing. As a bonus, you also get a better understanding of how the domain name system, DNS, works.</p>
<p>When a domain (also called zone) is sent to Zonemaster, the program investigates the state of the domain from beginning to end. This is done through Zonemaster examining DNS from the root (.) to the TLD (top-level domain, for example, .se), and then finally through the DNS servers that contain information about the specified domain (for example, zonemaster.se).</p>
<p>Zonemaster is also able to perform many other tests, for example, checking the DNSSEC signatures, that different hosts can be accessed and that the IP addresses are valid. This is all to make sure that your domain runs as good as possible.</p>
<h2>About the domain name system, DNS</h2>
<p>Most people who use the internet have never reflected over what actually happens when one types an address in their web browser and then clicks the enter button.</p>
<p>To simplify, the domain name system, (DNS) is a database that associates domain names to IP addresses, the same way a phone book associates names to phone numbers.</p>
<p>An IP address is a unique series of numbers that identifies every computer that is connected to the internet. It’s similar to the way every telephone has its own number in the telephone network.</p>
<p>A long series of numbers works fine for computers, but it’s difficult for people to memorize. Therefore, DNS has been developed – an extra system for us when we want to reach a web server on a specific site or an email server we want to send an email to.</p>
</div>
<div class="column hide-for-small-only medium-5">
<figure class="all-stoplights-img"><svg id="all_streetlights" xmlns="http://www.w3.org/2000/svg" viewbox="0 0 540.5 360">
<defs></defs>
<title>Zonemaster all lights</title>
<polygon class="cls-1" points="310 143.33 166.67 0 0 307.68 52.32 360 540.5 360 310 143.33"></polygon>
<rect width="166.67" height="307.68"></rect>
<path class="cls-2-all red-all" d="M83.33,103.18a40.5,40.5,0,1,0-40.5-40.5,40.5,40.5,0,0,0,40.5,40.5"></path>
<path class="cls-2-all orange-all" d="M83.33,194.34a40.5,40.5,0,1,0-40.5-40.5,40.5,40.5,0,0,0,40.5,40.5"></path>
<path class="cls-2-all green-all" d="M83.33,285.5A40.5,40.5,0,1,0,42.83,245a40.5,40.5,0,0,0,40.5,40.5"></path>
</svg></figure>
</div>
</div>
</div>
<footer class="site-footer" id="footer">
<div class="row align-middle">
<div class="column">The Swedish Internet Foundation presents Zonemaster backend v5.0.2 with Zonemaster engine v3.1.2</div>
<div class="columns shrink hide" id="proxynonce">8a47e82a72</div>
</div>
</footer>
<div class="iis-global-footer wrapper-fluid o-footer--row o-footer" id="siteFooter">
<div class="grid-xl-6 grid-lg-8 grid-18 o-footer__info o-footer__info__inner">
<p class="o-footer__paragraph"><a class="o-footer__link" href="https://internetstiftelsen.se">Internetstiftelsen</a> verkar för ett internet som bidrar positivt till människan och samhället. Vi är en oberoende organisation som säkerställer en stark och säker infrastruktur för internet i Sverige. Vårt mål är att alla ska våga och kunna använda internet. Vi finns i Sverige och ansvarar för den svenska toppdomänen .se och driften av toppdomänen .nu.</p>
<div class="o-footer--row">
<div class="grid-xxl-9 grid-18 o-footer__contact">
<ul class="u-list-clean o-footer__contact__address">
<li class="o-footer__contact__address__li">Internetstiftelsen</li>
<li class="o-footer__contact__address__li">Hammarby Kaj 10D</li>
<li class="o-footer__contact__address__li">Box 92073</li>
<li class="o-footer__contact__address__li">120 07 Stockholm</li>
</ul>
</div>
<div class="grid-xxl-9 grid-18 o-footer__contact">
<ul class="u-list-clean o-footer__contact__address">
<li class="o-footer__contact__address__li">E-post: <a class="o-footer__link" href="mailto:info@internetstiftelsen.se">info@internetstiftelsen.se</a></li>
<li class="o-footer__contact__address__li">Telefon: <a class="o-footer__link" href="tel:084523500">08-452 35 00</a></li>
<li class="o-footer__contact__address__li">Organisationsnummer: 802405-0190</li>
</ul>
</div>
</div>
<div class="o-footer--row u-m-t-2 o-footer-grid"><a href="https://internetstiftelsen.se/docs/Certifikat_27001_UKAS_sv.pdf" class="o-footer__link o-footer__ISO-link"><img src="https://internetstiftelsen.se/app/themes/internetstiftelsen/images/ISO_27001_2013_black_TM.svg" class="o-footer__ISO-logo" alt="Certifierade enligt ISO/IEC 27001:2013" /> <span>Certifierade enligt ISO/IEC<br />
27001:2013</span></a></div>
</div>
<div class="grid-xl-12 grid-lg-10 grid-18 o-footer__logotypes o-footer--row o-footer__grid-row u-m-r-0">
<div class="o-footer__grid-row__item"><a href="https://svenskarnaochinternet.se" class="o-footer__logo-link"><img class="o-footer__logotype" alt="Svenskarna och internet" src="https://static.iis.se/images/logotypes/svenskarna-och-internet.svg" /></a></div>
<div class="o-footer__grid-row__item"><a href="https://internetdagarna.se/" class="o-footer__logo-link"><img class="o-footer__logotype" alt="Internetdagarna" src="https://static.iis.se/images/logotypes/internetdagarna.svg" /></a></div>
<div class="o-footer__grid-row__item"><a href="https://internetstiftelsen.se/" class="o-footer__logo-link"><img class="o-footer__logotype" alt="Internetstiftelsen" src="https://static.iis.se/images/logotypes/internetstiftelsen.svg" /></a></div>
<div class="o-footer__grid-row__item"><a href="http://www.bredbandskollen.se/" class="o-footer__logo-link"><img class="o-footer__logotype" alt="Bredbandskollen" src="https://static.iis.se/images/logotypes/bredbandskollen.svg" /></a></div>
<div class="o-footer__grid-row__item"><a href="https://www.internetmuseum.se/" class="o-footer__logo-link"><img class="o-footer__logotype" alt="Internetmuseum" src="https://static.iis.se/images/logotypes/internetmuseum.svg" /></a></div>
<div class="o-footer__grid-row__item"><a href="https://digitalalektioner.se/" class="o-footer__logo-link"><img class="o-footer__logotype" alt="Digitala lektioner" src="https://static.iis.se/images/logotypes/digitala-lektioner.svg" /></a></div>
</div>
<div class="u-p-y-1 o-footer__bottom-links">
<nav>
<ul class="u-list-clean display-flex">
<li class="u-p-x-1"><a href="https://internetstiftelsen.se/om-webbplatsen/" class="o-footer__link o-footer__about-link">Om webbplatsen</a></li>
<li class="u-p-x-1"><a href="https://internetstiftelsen.se/om-webbplatsen/kakor/" class="o-footer__link o-footer__about-link">Om kakor</a></li>
</ul>
</nav>
</div>
</div>
<script type='text/javascript'>
/* <![CDATA[ */
var zmDefs = {"waitingOnResult":"Test done. Waiting on results","required_text":"This field is required","fetching_data":"Fetching data..","error_parent":"Error then trying to get parent zone data","error_ipaddress":"Incorrect IP-address:","start_test":"Starting test..","running_test":"Running test..","error_text":"Something actually went wrong. Error :(","copy_done":"Copied!","copy_press":"Press","copy_to":"to","copy":"Copy","polling_interval":"1500","debug":"no","current_language":"en_US"};
/* ]]> */
</script>
<script type='text/javascript' src='https://zonemaster.iis.se/wordpress/wp-content/themes/zonemaster-iis-frontend/js/app.5338c9c8.min.js'></script>
<script type='text/javascript' src='https://zonemaster.iis.se/wordpress/wp-includes/js/wp-embed.min.js'></script>
<script>
<![CDATA[
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)})(window,document,'script','//www.google-analytics.com/analytics.js','ga');ga('create', 'UA-2736468-7', 'auto');ga('send', 'pageview');
]]>
</script>
</body>
</html>

Warnings Errors and Accessibility

line 30 column 561 - Warning: '<' + '/' + letter not allowed here
line 30 column 566 - Warning: '<' + '/' + letter not allowed here
line 30 column 572 - Warning: '<' + '/' + letter not allowed here
line 30 column 740 - Warning: '<' + '/' + letter not allowed here
line 30 column 749 - Warning: '<' + '/' + letter not allowed here
line 30 column 755 - Warning: '<' + '/' + letter not allowed here
line 30 column 761 - Warning: '<' + '/' + letter not allowed here
line 30 column 767 - Warning: '<' + '/' + letter not allowed here
line 30 column 773 - Warning: '<' + '/' + letter not allowed here
line 70 column 33 - Info: value for attribute "aria-selected" missing quote marks
line 76 column 53 - Warning: unescaped & or unknown entity "&tab"
line 197 column 33 - Warning: <div> dropping value "NULL" for repeated attribute "data-reveal"

Accessibility Checks:

line 14 column 1 - Access: [6.1.1.1]: style sheets require testing (link).
line 15 column 1 - Access: [6.1.1.1]: style sheets require testing (link).
line 16 column 1 - Access: [6.1.1.1]: style sheets require testing (link).
line 17 column 1 - Access: [6.1.1.1]: style sheets require testing (link).
line 18 column 1 - Access: [6.1.1.1]: style sheets require testing (link).
line 19 column 1 - Access: [6.2.2.2]: text equivalents require updating (script).
line 19 column 1 - Access: [6.3.1.1]: programmatic objects require testing (script).
line 19 column 1 - Access: [8.1.1.1]: ensure programmatic objects are accessible (script).
line 19 column 1 - Access: [7.1.1.1]: remove flicker (script).
line 19 column 1 - Access: [2.1.1.4]: ensure information not conveyed through color alone (script).
line 19 column 1 - Access: [1.1.10.1]: <script> missing <noscript> section.
line 28 column 17 - Access: [6.2.2.2]: text equivalents require updating (script).
line 28 column 17 - Access: [6.3.1.1]: programmatic objects require testing (script).
line 28 column 17 - Access: [8.1.1.1]: ensure programmatic objects are accessible (script).
line 28 column 17 - Access: [7.1.1.1]: remove flicker (script).
line 28 column 17 - Access: [2.1.1.4]: ensure information not conveyed through color alone (script).
line 28 column 17 - Access: [1.1.10.1]: <script> missing <noscript> section.
line 106 column 88 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 107 column 33 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 110 column 41 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 112 column 49 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 114 column 41 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 114 column 125 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 136 column 41 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 139 column 33 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 139 column 117 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 153 column 57 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 157 column 65 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 181 column 88 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 182 column 33 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 186 column 49 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 214 column 57 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 218 column 65 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 226 column 57 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 248 column 65 - Access: [2.1.1.5]: ensure information not conveyed through color alone (input).
line 271 column 63 - Access: [6.1.1.2]: style sheets require testing (style element).
line 287 column 1740 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 287 column 1918 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 288 column 112 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 288 column 112 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 290 column 107 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 290 column 107 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 292 column 110 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 292 column 110 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 294 column 110 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 294 column 110 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 296 column 110 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 296 column 110 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 298 column 109 - Access: [2.1.1.1]: ensure information not conveyed through color alone (image).
line 298 column 109 - Access: [1.1.2.1]: <img> missing 'longdesc' and d-link.
line 299 column 473 - Access: [6.2.2.2]: text equivalents require updating (script).
line 299 column 473 - Access: [6.3.1.1]: programmatic objects require testing (script).
line 299 column 473 - Access: [8.1.1.1]: ensure programmatic objects are accessible (script).
line 299 column 473 - Access: [7.1.1.1]: remove flicker (script).
line 299 column 473 - Access: [2.1.1.4]: ensure information not conveyed through color alone (script).
line 299 column 473 - Access: [1.1.10.1]: <script> missing <noscript> section.
line 304 column 1 - Access: [6.2.2.2]: text equivalents require updating (script).
line 304 column 1 - Access: [6.3.1.1]: programmatic objects require testing (script).
line 304 column 1 - Access: [8.1.1.1]: ensure programmatic objects are accessible (script).
line 304 column 1 - Access: [7.1.1.1]: remove flicker (script).
line 304 column 1 - Access: [2.1.1.4]: ensure information not conveyed through color alone (script).
line 304 column 1 - Access: [1.1.10.1]: <script> missing <noscript> section.
line 305 column 1 - Access: [6.2.2.2]: text equivalents require updating (script).
line 305 column 1 - Access: [6.3.1.1]: programmatic objects require testing (script).
line 305 column 1 - Access: [8.1.1.1]: ensure programmatic objects are accessible (script).
line 305 column 1 - Access: [7.1.1.1]: remove flicker (script).
line 305 column 1 - Access: [2.1.1.4]: ensure information not conveyed through color alone (script).
line 305 column 1 - Access: [1.1.10.1]: <script> missing <noscript> section.
line 306 column 1 - Access: [6.2.2.2]: text equivalents require updating (script).
line 306 column 1 - Access: [6.3.1.1]: programmatic objects require testing (script).
line 306 column 1 - Access: [8.1.1.1]: ensure programmatic objects are accessible (script).
line 306 column 1 - Access: [7.1.1.1]: remove flicker (script).
line 306 column 1 - Access: [2.1.1.4]: ensure information not conveyed through color alone (script).
line 306 column 1 - Access: [1.1.10.1]: <script> missing <noscript> section.
line 139 column 33 - Warning: <input> anchor "tld_zonemaster" already defined
line 271 column 63 - Warning: moved <style> tag to <head>! fix-style-tags: no to avoid.
Info: Document content looks like HTML5
<HTMLYSE> found 13 warnings and 0 errors!