Open
Cached
·
just now
68/100
SECURITY SCORE
Certificate Information
Subject
CN=condenast.com
Issuer
C=US, O=Amazon, CN=Amazon RSA 2048 M01
Valid From
October 10, 2025
Valid Until
November 08, 2026
314 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
3E:4B:33:83:32:73:66:43:18:0F:95:86:40:45:35:B5:21:AF:11:DD:E8:0D:AB:ED:F3:27:DF:81:D8:85:8F:78
Alternative Names
Security Configuration
TLS Protocols
TLS 1.0
TLS 1.1
TLS 1.2
Forward Secrecy
Limited
(Check cipher configuration)
Warnings
- • TLS 1.3 is not supported (recommended)
- • TLS 1.1 is deprecated and should be disabled
- • TLS 1.0 is deprecated and should be disabled
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
99 domains
condenaststudio.com
*.condenaststudio.com
condenast.com
condenasttraveler.com
*.condenasttraveler.com
condenet.co.uk
*.condenet.co.uk
condenet.com
*.condenet.com
easylivingmagazine.com
*.easylivingmagazine.com
epicurious.com
*.epicurious.com
fnshoestar.com
*.fnshoestar.com
gadgetlab.com
*.gadgetlab.com
glamlatina.com
*.glamlatina.com
glamour-scoop.com
*.glamour-scoop.com
glamour.com
*.glamour.com
glamour.com.mx
*.glamour.com.mx
glamour.de
*.glamour.de
glamourmagazine.co.uk
*.glamourmagazine.co.uk
glamourrsvp.com
*.glamourrsvp.com
glmr.uk
*.glmr.uk
gourmet.com
*.gourmet.com
gq-magazine.co.uk
*.gq-magazine.co.uk
gq-us.com
*.gq-us.com
gq.co.uk
*.gq.co.uk
gq.com
*.gq.com
gq.uk
*.gq.uk
gqbespoke.com
*.gqbespoke.com
gqcityguides.com
*.gqcityguides.com
gqeditorsclub.co.uk
*.gqeditorsclub.co.uk
gqheroes.co.uk
*.gqheroes.co.uk
gqheroes.com
*.gqheroes.com
gqmag.in
*.gqmag.in
gqmagazine.com
*.gqmagazine.com
gqmagazine.fr
*.gqmagazine.fr
gqsport.com
*.gqsport.com
gqsports.com
*.gqsports.com
hautespotsurvey.com
*.hautespotsurvey.com
historichouses.co.uk
*.historichouses.co.uk
hmfashionforwardfuture.com
*.hmfashionforwardfuture.com
hollywooddeal.biz
*.hollywooddeal.biz
hotelchatter.com
*.hotelchatter.com
hotwired.com
*.hotwired.com
houseandgarden.co.uk
*.houseandgarden.co.uk
houseandgarden.com
*.houseandgarden.com
housegarden.com
*.housegarden.com
insidevogue.com
*.insidevogue.com
itsclever.com
*.itsclever.com
jaunted.com
*.jaunted.com
johansens.co.uk
*.johansens.co.uk
marketmovers.biz
*.marketmovers.biz
menoftheyear.de
*.menoftheyear.de
mensvoguemusthave.com
*.mensvoguemusthave.com
mostlovedbeauty.com
*.mostlovedbeauty.com
Other domains in certificate