indexo.dev

bayfed.com

.com crawl

First seen 2026-05-27 · Last seen 2026-05-31 · ok HTTP/1.1 200 4898 ms crawled 2026-05-30

US · 40.71.11.153 · AS8075 Microsoft Corporation

Reputation 87/100 weak security headers spf without fallback

Classifying

HTML metadata

Title
Home - Bay Federal Credit Union
Description
Choose Bay Federal Credit Union for your personal and business banking needs. Aptos, Capitola, Freedom, Santa Cruz, Scotts Valley, Watsonville, and Salinas.
Language
en
Canonical
https://www.bayfed.com/

Open Graph

url
https://www.bayfed.com/
title
Home
site name
Bay Federal Credit Union

Technology

CDN
Azure Front Door
jQuery
3.6.0
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
Third-party hosts loaded (9)
  • cdn.jsdelivr.net×2
  • api.glia.com×1
  • code.jquery.com×1
  • cookie-cdn.cookiepro.com×1
  • cse.google.com×1
  • kit.fontawesome.com×1
  • use.typekit.net×1
  • www.googletagmanager.com×1
  • wwwbayfedcom.mpeasylink.com×1

Social

Contact

Phone

Registration

Registrar
Network Solutions, LLC
Created
1996-09-10
Expires
2027-09-09 465 days left
Updated
2026-03-19
Name servers
  • ns-1110.awsdns-10.org
  • ns-1986.awsdns-56.co.uk
  • ns-344.awsdns-43.com
  • ns-577.awsdns-08.net

DNS records live

NS
  • ns-1110.awsdns-10.org
  • ns-1986.awsdns-56.co.uk
  • ns-344.awsdns-43.com
  • ns-577.awsdns-08.net
MX
  • 0 bayfed-com.mail.protection.outlook.com
TXT
  • ip4:64.161.157.128/27
  • sni12v13c69md3pt5k1e7vkm8b
Verified for
  • Anthropic
  • Atlassian
  • DocuSign
  • Dropbox
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 redirect=bayfed.com.on.autospf.email
missing all
DMARC
v=DMARC1; p=quarantine; rua=mailto:2f04cf158291.a@dmarcinput.com,mailto:mailauth-reports@bayfed.com; ruf=mailto:2f04cf158291.f@dmarcinput.com,mailto:mailauth-reports@bayfed.com; fo=1; pct=100
policy: quarantine
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqyaG8fZsojFUBE4unKjnA3bp2ZzwlAx7GzsY1F5RsLAqPXYbN1wmughosj5VnFvk2owC9+w9sjclXc…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9CScjTQgYFd/R44WcSk+zjYyf2XldSVuDtVi+USoI89Ot3TCSYYolp9FXl6uvt0xVL8RwrJ9R5F8Tk…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtubeyuVkFjh7AkW5PAr5ZSSyUTJ6PGl+UuhRtHe+ezpDW7CBgXYYLS5+ii1ubAF8BRqdtO4PuxFr3NnspB…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA22FtYf52nRpFEnWe8J3hpS9Vt7u8qMeo+HXyOfzTA9BnNGv3Qc+h96I1+rIJYLj/vEyFqNgZp0gmSqe0hj…
selectors probed

Certificate (current)

GeoTrust TLS RSA CA G1
from 2026-04-17 to 2026-10-18
Expires in 139 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.bayfed.com/

present
  • strict-transport-security
findings
  • short HSTS max-age
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
strict-transport-security
max-age=10886400

Links to (11)

Linked from (5)