DNS Gurus
Cached · just now
73/100 SECURITY SCORE

Certificate Information

Subject
CN=condenast.com
Issuer
C=BE, O=GlobalSign nv-sa, CN=GlobalSign Atlas R3 DV TLS CA 2025 Q1
Valid From
February 11, 2025
Valid Until
March 15, 2026 76 days
Public Key
RSA 2048 bit Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
5B:7D:3F:6E:E2:B7:EA:0C:38:4E:CC:29:86:41:5C:28:FE:6E:80:D6:EA:C3:35:B8:4B:D7:6F:62:DE:20:65:C8
Alternative Names
120 domains

Security Configuration

TLS Protocols
TLS 1.2
Forward Secrecy
Limited (Check cipher configuration)
Warnings
  • TLS 1.3 is not supported (recommended)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

120 domains
condenastdigital.com *.condenastdigital.com

Other domains in certificate

admagazine.com *.admagazine.com
admagazine.fr *.admagazine.fr media.admagazine.fr *.media.admagazine.fr stag-media.admagazine.fr *.stag-media.admagazine.fr stag.admagazine.fr *.stag.admagazine.fr
allure.com *.allure.com
allurereaderschoiceawards.com *.allurereaderschoiceawards.com
architecturaldigest.com *.architecturaldigest.com
architecturaldigest.in *.architecturaldigest.in assets.architecturaldigest.in stag-assets.architecturaldigest.in
backchannel.com *.backchannel.com
bonappetit.com *.bonappetit.com
cna.st
cnspotlight.com *.cnspotlight.com
cntraveler.com *.cntraveler.com
assets.cntraveller.in *.assets.cntraveller.in cntraveller.in *.cntraveller.in stag-assets.cntraveller.in *.stag-assets.cntraveller.in
conde.io *.conde.io
ads.thestudio.condenast.com condenast.com *.condenast.com
condenast.io *.condenast.io
condenasthealth.com *.condenasthealth.com
condenaststudio.com *.condenaststudio.com
condenet.com *.condenet.com
epicurious.com *.epicurious.com
glamour.com *.glamour.com
glamour.es *.glamour.es
glamour.mx *.glamour.mx
gq-magazine.co.uk
gq.com *.gq.com
gqmagazine.fr
*.lacucinaitaliana.com media.lacucinaitaliana.com
newyorker.com *.newyorker.com
pitchfork.com *.pitchfork.com
pitchforkmusicfestival.com *.pitchforkmusicfestival.com
revistaad.es *.revistaad.es
revistavanityfair.es *.revistavanityfair.es
self.com *.self.com
smartwaterinspiration.com *.smartwaterinspiration.com
teenvogue.com *.teenvogue.com
teenvogueinsider.com *.teenvogueinsider.com
them.us *.them.us
media.traveler.es stag-media.traveler.es traveler.es *.traveler.es
vanityfair.com *.vanityfair.com
vanityfair.fr *.vanityfair.fr
vogue.com *.vogue.com
vogueinternational.com *.vogueinternational.com
wired.co.uk *.wired.co.uk
es.wired.com *.es.wired.com interactive-stag.es.wired.com *.interactive-stag.es.wired.com interactive.es.wired.com *.interactive.es.wired.com media-stag.es.wired.com *.media-stag.es.wired.com media.es.wired.com *.media.es.wired.com multiverso.es.wired.com *.multiverso.es.wired.com stag.es.wired.com *.stag.es.wired.com wired.com *.wired.com
wired.jp *.wired.jp
stag.worldofinteriors.com *.stag.worldofinteriors.com worldofinteriors.com *.worldofinteriors.com