DNS Gurus
Cached · just now
75/100 SECURITY SCORE

Certificate Information

Subject
C=IN, ST=Delhi, L=New Delhi, O=HT Media Ltd., CN=www.hindustantimes.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Global G3 TLS ECC SHA384 2020 CA1
Valid From
July 29, 2025
Valid Until
July 28, 2026 211 days
Public Key
ECDSA 256 bit (P-256) Adequate
Signature Algorithm
ECDSA-SHA384
SHA-256 Fingerprint
BD:EE:D4:4D:8C:0A:A0:94:2C:B1:18:13:70:63:87:14:A9:6F:8E:44:41:27:A1:78:D6:70:56:75:22:82:5A:A6
Alternative Names
98 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

98 domains
api2.ottplay.com api3.ottplay.com cdpapi.ottplay.com config-api.ottplay.com coupon-api.ottplay.com dev1-ssr.ottplay.com jioapi.ottplay.com m.ottplay.com news-reco.ottplay.com ondc-api.ottplay.com pg-api.ottplay.com pre-config-api.ottplay.com pre-coupon-api.ottplay.com pre-pg-api.ottplay.com pre-pg-subs-data-api.ottplay.com pre-sub-recoapi.ottplay.com pre-subscription-api.ottplay.com premium-recoapi.ottplay.com premium.ottplay.com preprod-jioapi.ottplay.com preprod-news-reco.ottplay.com re-eval.ottplay.com reco-arg.ottplay.com stg-config-api.ottplay.com stg-coupon-api.ottplay.com stg-jiophone.ottplay.com stg-news-reco.ottplay.com stg-ondc-api.ottplay.com stg-pg-api.ottplay.com stg-pg-subs-data-api.ottplay.com stg-ssr.ottplay.com stg-sub-recoapi.ottplay.com stg-subscription-api.ottplay.com subs-api-demo.ottplay.com subs-api.ottplay.com subs-demo.ottplay.com subs.ottplay.com subscription-api.ottplay.com subscription-cms.ottplay.com subscription-cmsapi.ottplay.com subscription-data-api.ottplay.com uat-ssr.ottplay.com www2.ottplay.com

Other domains in certificate

cdpapi.desimartini.com feeds.desimartini.com
cdpapi.healthshots.com images.healthshots.com
hindustanchampions.com stg.hindustanchampions.com www.hindustanchampions.com
hindustanolympiad.in www.hindustanolympiad.in
akamai-test.hindustantimes.com api-kannada.hindustantimes.com api-marathi.hindustantimes.com api-tamil.hindustantimes.com api-telugu.hindustantimes.com cricket-api.hindustantimes.com dap.hindustantimes.com dev-nex-htschool.hindustantimes.com image-nft.hindustantimes.com kannada.hindustantimes.com marathi.hindustantimes.com nft.hindustantimes.com preprod-nex-htschool.hindustantimes.com preprod-nft.hindustantimes.com preprod-olympaid.hindustantimes.com qa-www.hindustantimes.com qa-www1.hindustantimes.com stage-nex-htschool.hindustantimes.com www.hindustantimes.com
www.htclassifieds.com
htcrickit.com
hteducationsummit.com stg.hteducationsummit.com www.hteducationsummit.com
htmedia.in poll.htmedia.in
www.htmoststylish.com
api.livehindustan.com cdpapi.livehindustan.com
cdpapi.livemint.com www.mintgenie.livemint.com
preprod-cms.mintgenie.com static.mintgenie.com
careerplus.shine.com chat.shine.com learning.shine.com m-learning.shine.com pp-chat.shine.com pp-learning.shine.com pp-mlearning.shine.com u.shine.com
campaign.slurrp.com cdpapi.slurrp.com lighthouse.slurrp.com stg-ondc.slurrp.com
upublish.org