// WholeTech security console

Network Security Dashboard

HTTPS, TLS certificate health, the six security response headers, password protection and mixed-content risk across every public site. Sorted worst-first — click a row for what to fix. Click a header to sort.

215sites

93avg Sec

215HTTPS up

182HSTS

180CSP

20password-gated

0mixed-content

Sec score = HTTPS (30) + cert health (10) + headers HSTS/CSP/XFO/XCTO/Referrer/Permissions (50) + no mixed content (10). Auth is informational, not scored (public sites shouldn't be gated). 401/redirect responses still count as reachable.

Scan notes — 6-point audit, 260614 03:15 UTC

Full network sweep across the six security dimensions. Findings, fixes already applied, and what's still recommended.

1 · HTTPS / TLS transport. 215/215 sites reachable over HTTPS. The only non-responders were stale .bak/.archived backup folders (now excluded — not live sites). No action needed.
2 · TLS certificate health. 187 Let's Encrypt certs, all auto-renewing via certbot; earliest expiry is Aug 3 2026 (~50 days out) — none in the danger window. Renewal confirmed; no action needed.
3 · Security response headers. FIXED: added a network-wide default header set (X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, HSTS) at the nginx http level (/etc/nginx/conf.d/wt-security-headers.conf). X-Frame-Options coverage jumped 13 → 191 (clickjacking defense). Sites with their own Content-Security-Policy keep frame-ancestors protection. Remaining: a few legacy/farm static vhosts (austen.live, retirehotsprings.com) serve over a shared default 443 block and don't inherit — flagged for a vhost rebuild. Proxied app subdomains may now emit duplicate (harmless) headers; can be scoped if wanted.
4 · Authentication / access control. 20 sites behind HTTP Basic auth for private areas. FIXED earlier today: closed the sessions.wholetech.com bare-root gap — the homepage was publicly readable while its sub-pages were gated. CSP no longer leaks the index.
5 · Mixed content. 0 sites serve any http:// sub-resource on an HTTPS page. The whole network is clean. No action needed.
6 · Request hardening. snippets/security.conf (blocks dotfiles, wp-/exploit paths, dangerous file types, and 9 known scraper/bad-actor bots) is active on 111 vhosts. Recommended: extend the include to every public vhost so the bot/exploit blocks are universal.

Network-wide rules honored: no API keys anywhere, nightly encrypted backups (14d local + 90d Backblaze) + 6-leg offsite, subscription-only. Re-run anytime with /root/sec-collect.sh + /root/gen-sec.py.

#row	Domain	Secavg 93	HTTPS215 up	Cert d	HSTS182	CSP180	XFO	XCTO	Ref	Perm	Auth20	Mixed0⚠
1	austen.live	46	✔	?	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
2	realestatehotsprings.com	46	✔	?	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
3	retirehotsprings.com	46	✔	?	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
4	atxfans-com.dev.wholetech.com	50	✔	43	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
5	atxsportsfans-com.dev.wholetech.com	50	✔	43	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
6	austintexasfans-com.dev.wholetech.com	50	✔	42	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
7	claude.wholetech.com	50	✔	43	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
8	codex.wholetech.com	50	✔	63	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
9	dev.austen.com	50	✔	44	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
10	dev.texascoliving.com	50	✔	65	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
11	dev.wholetech.com	50	✔	41	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
12	gemini.wholetech.com	50	✔	65	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
13	grok.wholetech.com	50	✔	66	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
14	hermes.wholetech.com	50	✔	73	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
15	hoarder.wholetech.com	50	✔	88	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
16	hot.dev.wholetech.com	50	✔	41	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
17	lifecycletransitions-com.hoarders.dev.wholetech.com	50	✔	45	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
18	money.wholetech.com	50	✔	60	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
19	onpointappliance-com.redesigns.wholetech.com	50	✔	78	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
20	os.wholetech.com	50	✔	71	·	·	·	·	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
21	lakehamiltonhomesforsale.com	54	✔	?	·	·	·	✔	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
22	thebergerongroup.com	54	✔	?	·	·	·	✔	·	·	·	0
	Missing security headers: HSTS, CSP, X-Frame-Options, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
23	lifelog.walhus.com	65	✔	53	·	·	·	✔	✔	·	✔	0
	Missing security headers: HSTS, CSP, X-Frame-Options, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). This site is behind HTTP Basic auth (password-protected) — good for private areas.
24	sessions.wholetech.com	66	✔	60	·	·	✔	✔	·	·	✔	0
	Missing security headers: HSTS, CSP, Referrer-Policy, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). This site is behind HTTP Basic auth (password-protected) — good for private areas.
25	land.wholetech.com	73	✔	56	·	·	✔	✔	✔	·	·	0
	Missing security headers: HSTS, CSP, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
26	manage.austinspring.com	73	✔	53	·	·	✔	✔	✔	·	✔	0
	Missing security headers: HSTS, CSP, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). This site is behind HTTP Basic auth (password-protected) — good for private areas.
27	smallhomevillage.wholetech.com	73	✔	56	·	·	✔	✔	✔	·	·	0
	Missing security headers: HSTS, CSP, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
28	alpinevillage.wholetech.com	80	✔	56	·	·	✔	✔	✔	✔	·	0
	Missing security headers: HSTS, CSP. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
29	alpinevillage2.wholetech.com	80	✔	57	·	·	✔	✔	✔	✔	·	0
	Missing security headers: HSTS, CSP. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
30	anilpattni.wholetech.com	80	✔	56	·	·	✔	✔	✔	✔	·	0
	Missing security headers: HSTS, CSP. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
31	tinyhackerhouse.wholetech.com	80	✔	56	·	·	✔	✔	✔	✔	·	0
	Missing security headers: HSTS, CSP. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
32	tvatx.com	80	✔	56	·	·	✔	✔	✔	✔	·	0
	Missing security headers: HSTS, CSP. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
33	wholetx.com	80	✔	56	·	·	✔	✔	✔	✔	·	0
	Missing security headers: HSTS, CSP. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
34	ladybug.walhus.com	83	✔	51	✔	·	✔	✔	✔	·	✔	0
	Missing security headers: CSP, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). This site is behind HTTP Basic auth (password-protected) — good for private areas.
35	paulsfriends.com	83	✔	49	✔	·	✔	✔	✔	·	✔	0
	Missing security headers: CSP, Permissions-Policy. Add them in the nginx server block (the wholetech.com vhost has the full set to copy). This site is behind HTTP Basic auth (password-protected) — good for private areas.
36	atxbbs.com	92	✔	34	✔	✔	·	✔	✔	✔	·	0
	Missing security headers: X-Frame-Options. Add them in the nginx server block (the wholetech.com vhost has the full set to copy).
37	austintechtrends.com	96	✔	?	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place. No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
38	bastropbeat.com	96	✔	?	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place. No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
39	hillrepair.com	96	✔	?	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place. No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
40	hotaisites.com	96	✔	?	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place. No dedicated Let's Encrypt cert found for this exact name (may be covered by a parent/wildcard cert).
41	adultstory.com	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
42	advairwater.com	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
43	afterhours.party	100	✔	40	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
44	afterstages.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
45	ai.wholetech.com	100	✔	73	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
46	aiaustintexas.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
47	airbnb.realhotsprings.com	100	✔	47	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
48	aiwayback.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
49	aiwholetech.com	100	✔	43	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
50	alexsmallengine.com	100	✔	43	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
51	alexsmallenginerepair.com	100	✔	57	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
52	americancoworking.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
53	aquachifit.com	100	✔	31	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
54	askemai.com	100	✔	84	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
55	atemcooler.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
56	atxaisites.com	100	✔	47	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
57	atxfans.com	100	✔	43	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
58	atxlot.com	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
59	atxnews.club	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
60	atxsportsfans.com	100	✔	43	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
61	atxtechnewsnow.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
62	atxtechtrends.com	100	✔	82	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
63	auditionmodel.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
64	austen.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
65	austenfirth.com	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
66	austenjane.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
67	austin.com.co	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
68	austinblogger.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
69	austincast.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
70	austincoffeeshowdown.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
71	austincribs.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
72	austinfestivalcalendar.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
73	austinhangout.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
74	austinhomesearches.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
75	austinlifestyles.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
76	austinmayor.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
77	austinpads.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
78	austinrepeater.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
79	austinretire.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
80	austinspring.com	100	✔	76	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
81	austintechnews.live	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
82	austintexascoworking.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
83	austintexasfans.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
84	austintweet.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
85	austinworking.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
86	barndo.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
87	barneyebsworth.com	100	✔	80	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
88	barneyfrauenthal.com	100	✔	76	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
89	bastropbuilder.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
90	bastropradio.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
91	bastroprealty.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
92	bastropstudio.com	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
93	baylesshigh.com	100	✔	42	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
94	bigdummiesguidetoai.com	100	✔	86	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
95	bmicrophone.com	100	✔	41	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
96	bnb.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
97	bnbhot.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
98	buildercamp.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
99	cambridgetower.net	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
100	campaignpromise.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
101	cargosolar.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
102	cargotown.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
103	carolekatchen.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
104	changeaustin.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
105	changebastrop.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
106	childrensfable.com	100	✔	86	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
107	childrenstory.net	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
108	childrenstory.org	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
109	chromecastcast.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
110	colinfirth.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
111	colinfirth.org	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
112	commercial.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
113	commercialaustin.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
114	convcast.com	100	✔	28	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
115	coworkingcamp.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
116	coworkingcoalition.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
117	coworkingcongress.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
118	coworkingretreat.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
119	cybersubdivision.com	100	✔	80	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
120	dev.rent.austinspring.com	100	✔	50	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
121	dev.tvreviewer.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
122	dev260515.wholetech.com	100	✔	60	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
123	dotepp.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
124	downtown.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
125	earthmodel.com	100	✔	52	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
126	earthscrapers.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
127	ehotsprings.com	100	✔	41	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
128	equestrian.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
129	fableguide.com	100	✔	86	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
130	far-uvclight.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
131	farms.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
132	finance.walhus.com	100	✔	41	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
133	firth.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
134	firthfan.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
135	flip.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
136	foreclosures.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
137	gamesked.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
138	girlhoop.com	100	✔	37	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
139	golf.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
140	golfcartvendors.com	100	✔	37	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
141	greenhomevideo.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
142	guide.bastroprealty.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
143	havelistings.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
144	hillcountryrepair.com	100	✔	58	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
145	historic.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
146	hoopwomen.com	100	✔	47	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
147	hunting.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
148	jane.austen.com	100	✔	45	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
149	jane.buildercamp.com	100	✔	37	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
150	lake.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
151	land.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
152	luxury.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
153	market.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
154	memsist.com	100	✔	80	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
155	motorblade.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
156	muskmile.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
157	my.paulsfriends.com	100	✔	53	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
158	neighborhell.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
159	neilcronk.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
160	newbuilds.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
161	offgridder.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
162	ownerfinance.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
163	pamadamic.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
164	pinest-tech.atxaisites.com	100	✔	47	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
165	pluspitch.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
166	podsat.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
167	poems.dotepp.com	100	✔	65	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
168	posters.wholetech.com	100	✔	51	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
169	proaudiobroker.com	100	✔	37	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
170	realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
171	relocate.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
172	rent.austinspring.com	100	✔	50	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
173	repeater.org	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
174	retire.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
175	robopodcast.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
176	robotnewsnow.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
177	robotnewstoday.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
178	rv.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
179	sheyroth.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
180	sitemap.wholetech.com	100	✔	43	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
181	smallhomevillage.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
182	smallhomevillages.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
183	snapswim.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
184	starter.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
185	steamlearn.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
186	stonedom.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
187	storage.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
188	stumblicious.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
189	tagslides.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
190	taichipaul.com	100	✔	51	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
191	texascoliving.com	100	✔	76	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
192	texascowork.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
193	texascoworking.com	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
194	texascoworking.org	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
195	thanksforclicking.net	100	✔	78	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
196	tiny.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
197	touroftexas.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
198	tribalsurvival.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
199	tvawardshow.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
200	tvawardshows.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
201	tvnight.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
202	tvreviewer.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
203	tvshowdb.com	100	✔	48	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
204	vacation.realhotsprings.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
205	videoretreat.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
206	videoswitchguide.com	100	✔	40	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
207	walhus.com	100	✔	76	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
208	webarter.net	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
209	webgirlvillage.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
210	whensthegame.com	100	✔	77	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
211	wholetech.com	100	✔	76	✔	✔	✔	✔	✔	✔	✔	0
	Solid posture — HTTPS, current cert and the core security headers are in place. This site is behind HTTP Basic auth (password-protected) — good for private areas.
212	wholetexas.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
213	wordpressmeetup.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
214	wordpressretreat.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.
215	workontheweb.com	100	✔	76	✔	✔	✔	✔	✔	✔	·	0
	Solid posture — HTTPS, current cert and the core security headers are in place.