HTTPS, SSL & Security Report for s.4a2s.stream
This report summarizes how well s.4a2s.stream is configured for secure web delivery. It covers HTTPS availability, HTTP→HTTPS redirects, TLS/SSL certificate validity, security headers, HTTP/2 and HTTP/3 support, and mixed content. Use it to quickly spot configuration gaps and improve your site's security and trust.
Enabled
Yes
A · 1.2, 1.3
5/6
Detailed checks
HTTPS availability
The site is reachable over HTTPS.
Why it matters: HTTPS encrypts traffic and protects user data.
HTTP to HTTPS redirect
Requests to HTTP are redirected to HTTPS.
TLS & CertificateA
| Valid | Yes |
| Issuer | C=US, O=Let's Encrypt, CN=YE2 |
| Expires | 2026-08-28 |
| Days until expiry | 65 days |
Why it matters: A valid, non-expired certificate ensures encryption is trusted by browsers.
To improve your grade
- •For A+: add HSTS preload.
Get a weekly security report for this domain
We'll check SSL grade, HTTPS, redirects, and security headers weekly. Email only when something changes.
Grade breakdown1 thing to improve for a higher grade →100/100 pts
To improve your grade
- •For A+: add HSTS preload.
Security headers5/6
- HSTS
- CSP
- X-Frame-Options
- X-Content-Type-Options
- Referrer-Policy
- Permissions-Policy
Score: 5 of 6 headers present. For the grade factor (5 pts), 4+ headers and Content-Security-Policy (CSP) are both required.
Cache-Control includes no-store on the HTML response. Browsers will not cache the document; ETag and conditional requests (304) are effectively disabled. Often intentional for authenticated pages; for public pages consider private with max-age or removing no-store if you want HTTP caching.
HSTS (HTTP Strict Transport Security)Enabled
- EnabledYes
- Max-Age182 days
- PreloadNo
Why it matters: HSTS tells browsers to use only HTTPS for this site. Preload allows inclusion in browsers’ built-in HSTS lists.
We check Chromium’s built-in list. hstspreload.org checks eligibility for submission (HSTS header, redirect chain). Results may differ for domains that are preloaded but no longer meet current eligibility rules.
HTTP/2
Not negotiated
TLS did not negotiate HTTP/2. Visitors may still use HTTP/1.1 over HTTPS.
HTTP/3 (QUIC)
Not advertised
The server does not advertise HTTP/3 (QUIC) via the Alt-Svc header.
DNS Security
CAA: Configured · DNSSEC: Not signedExpand
Allowed issuers: letsencrypt.org, comodoca.com, pki.goog, ssl.com, digicert.com
Mixed content
None detected
No HTTP resources were detected on the HTTPS page.
Redirect chain825ms total
When you visit the site over HTTP, the server may send you through one or more redirects until you land on the final HTTPS URL. Shorter chains are faster and better for SEO.
- 1.http://s.4a2s.stream326ms
- 2.https://s.4a2s.stream/499ms
Recommendations for s.4a2s.stream
Based on this scan, here are the 2 next steps that would most improve security and SEO for s.4a2s.stream.
Add 1 missing security header
Recommendeds.4a2s.stream sends 5 of 6 recommended security headers — missing: Permissions-Policy. Most take one line of server config and protect against clickjacking, MIME sniffing and data leaks.
Enable HTTP/2
Nice to haves.4a2s.stream serves traffic over HTTP/1.1. HTTP/2 multiplexes requests over one connection, which noticeably speeds up pages with many assets. It requires HTTPS, which you already have the foundation for.
Show this badge on your site
Let your visitors know your SSL setup is verified. The badge always shows your current grade and links to this report. Paste the snippet into your site footer:
← live preview, updates automatically<a href="https://httpsornot.com/report/s.4a2s.stream?utm_source=badge" target="_blank" rel="noopener"> <img src="https://httpsornot.com/badge/s.4a2s.stream.svg" alt="SSL grade for s.4a2s.stream — checked by HTTPS Checker" height="20" loading="lazy" /> </a>
Domain owner? If you want this report removed or made private, contact us.