indexo.dev

42madrid.com

.com crawl

First seen 2026-05-11 · Last seen 2026-05-17 · ok HTTP/1.1 200 23999 ms crawled 2026-05-17

ES · 195.55.75.229 · AS3352 Telefonica De Espana S.a.u.

Reputation 89/100 weak security headers dmarc monitor-only

sector education type landing page

HTML metadata

Title
42 Madrid - Escuela 42
Language
es
Generator
All in One SEO Pro (AIOSEO) 4.9.3
Canonical
https://www.42madrid.com/

Open Graph

url
https://www.42madrid.com/
title
42 Madrid - Escuela 42
locale
es_ES
site name
Escuela 42 - Telefónica

Technology

Server
openresty
CMS
WordPress
Fonts
  • Adobe Fonts

Third-party hosts loaded (3)

  • unpkg.com×3
  • use.typekit.net×1
  • www.google.com×1

Social

Contact

Address
Ronda de la Comunicación, s/n28050

Registration

Registrar
Gandi SAS
Created
2019-05-07
Expires
2028-05-07 719 days left
Updated
2026-04-24
Name servers
  • aaron.ns.cloudflare.com
  • martha.ns.cloudflare.com

DNS records live

NS
  • aaron.ns.cloudflare.com
  • martha.ns.cloudflare.com
MX
  • 10 spool.mail.gandi.net
  • 50 fb.mail.gandi.net
TXT
  • _globalsign-domain-verification=X13GuvWcYEoT6APyO0oZwS1_6TDjTRDHdzu-9PmmnL
  • google-site-verification=jx_1oATuxo5eHg7J5scPf_oJMIe0l8NGEncet2NPJrM
  • _globalsign-domain-verification=WHGzCEBoK1SnBJkRmXFfLhbP79nGwKrp7F7ypyoJAq

Email authentication partial

SPF
v=spf1 include:_mailcust.gandi.net include:spf.mailjet.com include:spf.slack.com a mx include:spf.42network.org ip4:195.55.210.1 -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:tech@42madrid.com; ruf=mailto:tech@42madrid.com; fo=1
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-03-24 to 2026-06-22
Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.42madrid.com/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.google.com www.gstatic.com cdn.cookielaw.org www.googletagmanager.com script.crazyegg.com static.cloudflareinsights.com www.clarity.ms unpkg.com www.google-analytics.com region1.google-analytics.com ad.doubleclick.net challenges.cloudflare.com *.cloudflare.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdn.jsdelivr.net fonts.bunny.net unpkg.com www.gstatic.com use.typekit.net p.typekit.net; font-src 'self' data: fonts.gstatic.com use.typekit.net fonts.bunny.net; img-src 'self' data: secure.gravatar.com i.ytimg.com t3.gstatic.com www.gstatic.com *.gstatic.com www.google.com www.linkedin.com www.slideshare.net www.googletagmanager.com s.w.org *.googleusercontent.com c.clarity.ms c.bing.com ps.w.org licensing.aioseo.com ad.doubleclick.net adservice.google.com *.cloudflare.com; frame-src 'self' www.youtube.com youtube-nocookie.com www.youtube-nocookie.com player.vimeo.com platform.twitter.com www.slideshare

Links to (12)

Linked from (3)