ashfield.org
ashfield.org
HTML metadata
Technology
Third-party hosts loaded (2)
- cdnres.willyweather.com×1
- docaccess.com×1
Social
Contact
- Phone
Registration
- Registrar
- Name.com, Inc.
- Created
- 1998-10-02
- Expires
- 2027-10-01 498 days left
- Updated
- 2018-09-07
- Name servers
-
- ns1jlp.name.com
- ns2lns.name.com
- ns3fqs.name.com
- ns4dmx.name.com
DNS records live
- NS
-
- ns1jlp.name.com
- ns2lns.name.com
- ns3fqs.name.com
- ns4dmx.name.com
- MX
-
- 0 ashfield-org.mail.protection.outlook.com
- Verified for
-
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:spf.finalsiteconnect.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@hilltownnetworks.com,mailto:dmarc_agg@vali.emailpolicy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCsNFP15+E/hoNb0uZiYFCX8K+lhMNVwPHdl0cndXGrhIF7TSTe2NcT0mNcZnGy+AShRs80fHYXih5kLZOssl… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - selector1:
Certificate (current)
R12
Expires in 71 days
HTTP security headers
- present
-
- content-security-policy
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *