indexo.dev

ba.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-17 · ok HTTP/1.1 200 615 ms crawled 2026-05-18

DE · 23.52.181.32 · AS16625 Akamai Technologies, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
British Airways - Information Page

Technology

CDN
Akamai

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1993-12-13
Expires
2026-12-12 207 days left
Updated
2025-12-08
Name servers
  • a1-20.akam.net
  • a10-66.akam.net
  • a20-64.akam.net
  • a24-65.akam.net
  • a3-65.akam.net
  • a5-66.akam.net

DNS records live

NS
  • a1-20.akam.net
  • a10-66.akam.net
  • a20-64.akam.net
  • a24-65.akam.net
  • a3-65.akam.net
  • a5-66.akam.net
  • ns1.britishairways.com
  • ns2.britishairways.com
MX
  • 0 ba-com.mail.protection.outlook.com
TXT
Show 33 TXT records
  • BmaiazHHTrrU0QlQRniFAFYGqv8H8E6nXNbLxB4Mie4=
  • google-site-verification=cAsBOhN3Mou0FJeEp8UlE6A0uxceNKbDBv9T1cb3HEA
  • v=BIMI1; l=https://ba.scene7.com/is/content/ba/british-airways/en/brand/logos/ba-speedmarque/crm/ba-speedmarque-solid-negative-crm-bimi.svg
  • 7dbdo07t8r5p1vki2898cbu08e
  • _globalsign-domain-verification=dPXf6Z6AuoEvv5yzTYxQpIum-yPZ6NInnOxQrawX-w
  • MS=ms27604030
  • LPufqil8YzItVXkcjdVONyIDx8iE14XrtC8XZn0jr68=
  • lj5cseFPEl3HSo3Z8uQtJ2+LaYD3ARkrbNaV6n1FO+U=
  • A/m4t7USIB0Q1XVtWatU+mz1z97H1KUbUBBLTUMEYlo=
  • h1-domain-verification=TaQLcdCtsqjecLKvgrkAzGaGivk6Reh4JUfbqhL1y8Go1rPA
  • atlassian-domain-verification=Rplln5fusr7E87iWG7lAKH8sGVJ6JOqRA0+u/VAInMK4+1lxgRE6gW4XlGs1y/Ai
  • _globalsign-domain-verification=prSinGcbyVaRta3JI-tPXVglN1KIia3_kS2y4B3D8C
  • SFMC-N_i50tczio61UQujksqv8xJMw5mcrZxglylJ9DV5
  • google-gws-recovery-domain-verification=55059618
  • jamf-site-verification=iQugyZui81175MKL2ZN-xQ
  • _globalsign-domain-verification=Hpc-42pCEg3SBenh3gJ7HI6P5SdDA1GIkrZdb1KuSB
  • _globalsign-domain-verification=XRYWnxacQTD8ObX2gRKu0bakIX0xKl7uQVmKeCBE8_
  • Dynatrace-site-verification=b4377f3d-972b-489d-aa73-c17d17932aeb__aast9d6ci8nkht48dsb4q11ivr
  • include:_relay.amadeus.com
  • Dynatrace-site-verification=ed873e9d-06ec-44c2-965c-7aa2df6f4118__v30ir8cfo1l6tt7b6epr2eh2f3
  • _globalsign-domain-verification=SDOUpjuBcelBo-HK_PIPAsaNaRT-3Rn_Q_Wsn4kLOQ
  • _globalsign-domain-verification=RiHC4P58rDVfXoPkFmczc4FKXVFtBh4QoowAULO7xy
  • _globalsign-domain-verification=erOGu4bJ47CUdD_2oFajQqDSWvsXAetHMa-If-HXhZ
  • nqA1SJzRdg4aUlCA3mZCrHhHjbXK3g6eWxEp0M0Cr5I=
  • _globalsign-domain-verification=_HxEX8zcU7svNEJPrnluJ0tMZhsEIhhzHttu_Wjyxo
  • adobe-idp-site-verification=26071d84dced13e3cb49fb7f9eb3262945cb9e966ec95452a52e431b547a30d5
  • Foxit-domain-verification=38b868f1aa95a92b66845143e3ec80c7
  • atlassian-domain-verification=nFs80bokQcqARi0ocl9JvwZyN5QJmpQteYjMi0Gq6BO4r/2boykMwIE9xnCq+KL9
  • CedMa+uVXSyKdyZaxpdY7j7EUWsnz6vfkpAQO3iZZoc=
  • figma-domain-verification=4c658b3c4a79b8ad735e22fed66180493325fd848a817b65697d0a163670664b-1769766677
  • atlassian-domain-verification=I9Pc52CHfYjLB3j7H8e4Ix9xyyxPL5Wv8I5CDtoDkUorJREF7XLaC1jmqKKZZXLe)
  • Dynatrace-site-verification=9f04f241-cff1-4e37-9968-ebc1750809a9__sa9g3m1iegfuninuvkk7b9h7sc
  • atlassian-domain-verification=IxNnvxprV7k1vnTa2T0aSGvEW2yweZflDo9nlRnvCArOybTQUAeANJRSrrrl3HdF

Email authentication strong

SPF
v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email include:spf.mailjet.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; sp=reject; fo=1; rua=mailto:dmarc_agg@vali.email
policy: reject (enforced) · sp=reject
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzL67xTuDg/bimwSe5mw3J8lWOdFE0cqYekMa17NQDnXxuP6uz9oxn3aECbR6o9cFxtzjSoehqjg3iWTzJRr…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpwbTuYRCwUWrplH684NyEa2sgIMwAYtMKZXKGfwfcAI/WAAkZVZ7Fof1+mk2Mm5NHAlHAt9pwe/+V7vUA…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7Dq5TsNJWBA+fcTJ5kPi1u/3SRE0q1H0vv7tV4vKW2OIoT2MnDT5sJ3jQfp0Q9O+CFjwCCizynBeBieP7UdLvM0…
selectors probed

Certificate (current)

GlobalSign GCC R3 EV TLS CA 2025
from 2025-10-30 to 2026-12-01
Expires in 196 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://ba.com/

findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy

Linked from (5)