%20--%3e%3ccircle%20cx='32'%20cy='32'%20r='30'%20fill='rgba(99,102,241,0.05)'%20stroke='url(%23icon-gradient)'%20stroke-width='1.5'/%3e%3c!--%20Left%20bracket%20%3c%20--%3e%3cpath%20d='M12%2020L4%2032L12%2044'%20stroke='url(%23icon-gradient)'%20stroke-width='4'%20stroke-linecap='round'%20stroke-linejoin='round'%20fill='none'/%3e%3c!--%20Central%20E%20--%3e%3cpath%20d='M22%2018H42V24H28V29H40V35H28V40H42V46H22V18Z'%20fill='url(%23icon-accent)'/%3e%3c!--%20Right%20bracket%20%3e%20--%3e%3cpath%20d='M52%2020L60%2032L52%2044'%20stroke='url(%23icon-gradient)'%20stroke-width='4'%20stroke-linecap='round'%20stroke-linejoin='round'%20fill='none'/%3e%3c!--%20Decorative%20dots%20--%3e%3ccircle%20cx='32'%20cy='10'%20r='2'%20fill='%23818CF8'%20opacity='0.7'/%3e%3ccircle%20cx='32'%20cy='54'%20r='2'%20fill='%236366F1'%20opacity='0.7'/%3e%3c/svg%3e){kind=small}
Leitfaden für Sicherheitslücken
Häufige Web-Sicherheitslücken verstehen und beheben, die von VitaPulse erkannt werden
Your SSL certificate does not include Certificate Transparency (CT) information, making it harder to detect misissued certificates.
Without Certificate Transparency, a rogue or compromised Certificate Authority could issue a fraudulent certificate for your domain without detection. CT logs provide public accountability — anyone can monitor them to detect unauthorized certificates. Chrome requires CT for all publicly trusted certificates since April 2018.
Ensure your Certificate Authority includes SCT (Signed Certificate Timestamp) in your certificate. Most modern CAs do this automatically. If not, switch to a CA that supports CT (Let's Encrypt, DigiCert, etc.).
Verify CT: openssl s_client -connect example.com:443 | openssl x509 -text | grep -A2 'CT Precertificate'