Open
Cached
·
just now
89/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=New York, L=New York, O=Yahoo Holdings Inc., CN=www.wow.com
Issuer
C=US, O=DigiCert Inc, CN=DigiCert Global G2 TLS RSA SHA256 2020 CA1
Valid From
November 25, 2025
Valid Until
May 20, 2026
166 days
Public Key
ECDSA
256 bit
(P-256)
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
F6:9F:B9:3D:DE:A2:3A:D1:FF:A9:D7:83:B6:3F:26:EA:6D:2D:85:2F:B7:7E:CB:55:E3:42:C3:4A:B1:18:EA:C9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.0
TLS 1.1
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
Warnings
- • TLS 1.1 is deprecated and should be disabled
- • TLS 1.0 is deprecated and should be disabled
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Basic
frame-ancestors; default-src; img-src; +6 more
frame-ancestors 'none'; default-src 'self' https://*.aol.com https://*.yahoo.com https://*.yimg.com; img-src * data:; script-src 'self' 'unsafe-inline' 'nonce-VdCGWgsDHLDAJBnZX0PNsg==' 'unsafe-eval' https://*.yahoo.com https://*.yimg.com https://*.aol.com https://*.aolcdn.com *.oath.com *.google.com www.googletagmanager.com www.googleadservices.com googleads.g.doubleclick.net *.googlesyndication.com https://sb.scorecardresearch.com bat.bing.com *.demdex.net *.googletagmanager.com; style-src 'self' 'unsafe-inline' https://*.yimg.com; object-src *; connect-src *; font-src * data:; frame-src 'self' https://*.youtube.com https://s.yimg.com https://*.yahoo.com *.g.doubleclick.net *.googlesyndication.com;
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
97 domains
autos.parts
www.autos.parts
24-7.pet
uk.24-7.pet
www.24-7.pet
247.vacations
uk.5min.com
anyprice.com
www.anyprice.com
aolsearch.com
*.aolsearch.com
autos24-7.com
www.autos24-7.com
baby.guide
www.baby.guide
chowist.com
www.chowist.com
citypedia.com
www.citypedia.com
couponbear.com
www.couponbear.com
diylife.com
www.diylife.com
enow.com
*.enow.com
fashion.life
www.fashion.life
fast.rentals
www.fast.rentals
find.furniture
www.find.furniture
foodbegood.com
www.foodbegood.com
furniture.deals
www.furniture.deals
gamer.site
www.gamer.site
glamorbank.com
www.glamorbank.com
golocal.guru
www.golocal.guru
greendaily.com
www.greendaily.com
health.zone
uk.health.zone
www.health.zone
health247.com
www.health247.com
homesessive.com
www.homesessive.com
housingwatch.com
www.housingwatch.com
insurance24-7.com
www.insurance24-7.com
intoautos.com
*.intoautos.com
job-sift.com
www.job-sift.com
know-legal.com
www.know-legal.com
learn-247.com
www.learn-247.com
localday.com
uk.localday.com
www.localday.com
luxist.com
www.luxist.com
money-a2z.com
www.money-a2z.com
netdeals.com
www.netdeals.com
netfind.com
*.netfind.com
pets.world
www.pets.world
see-it.live
www.see-it.live
shopfone.com
www.shopfone.com
sport-king.com
www.sport-king.com
tech24.deals
www.tech24.deals
tech247.co
www.tech247.co
thegifts.co
www.thegifts.co
think24-7.com
www.think24-7.com
viral.site
www.viral.site
when.com
*.when.com
wow.com
*.wow.com
www.wow.com
www.247.vacations
Other domains in certificate