indexo.dev

bearvalleyvacationrentals.com

.com crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 1434 ms crawled 2026-06-01

US · 104.21.94.194 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Bear Valley Vacation Rentals, by RedAwning
Language
en
Canonical
https://www.bearvalleyvacationrentals.com/

Open Graph

url
https://www.bearvalleyvacationrentals.com/
title
Bear Valley Vacation Rentals, by RedAwning

Technology

CDN
Amazon CloudFront
Server
AmazonS3
CMS
Drupal
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • d2ahx1ixus1h8c.cloudfront.net×7
  • www.googletagmanager.com×2
  • d38p570wb3yztx.cloudfront.net×1

Social

Contact

Email
Phone

Registration

Registrar
Cloudflare, Inc.
Created
2003-06-30
Expires
2028-06-30 759 days left
Updated
2024-08-05
Name servers
  • ingrid.ns.cloudflare.com
  • will.ns.cloudflare.com

DNS records live

NS
  • ingrid.ns.cloudflare.com
  • will.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com

Email authentication strong

SPF
v=spf1 include:_spf.google.com ip4:209.85.208.196 ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:65735f9786a96@ag.dmarcly.com; ruf=mailto:65735f9786a96@fo.dmarcly.com; sp=quarantine; fo=0;
policy: quarantine · sp=quarantine
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

WE1
from 2026-05-10 to 2026-08-08
Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.bearvalleyvacationrentals.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
connect-src 'self' wss://dev.wss.redawning.com wss://wss.redawning.com cdn.tiny.cloud d38p570wb3yztx.cloudfront.net *.fontawesome.com stats.g.doubleclick.net api.mapbox.com events.mapbox.com cognito-identity.us-west-2.amazonaws.com cognito-idp.us-west-2.amazonaws.com analytics.google.com dev-redawning.auth.us-west-2.amazoncognito.com redawning.auth.us-west-2.amazoncognito.com redawning.com *.redawning.com maps.googleapis.com s3.us-west-2.amazonaws.com *.omappapi.com www.google-analytics.com www.snapengage.com *.analytics.google.com *.googletagmanager.com pagead2.googlesyndication.com www.googleadservices.com www.google.com google.com *.s3.amazonaws.com; font-src 'self' *.fontawesome.com fonts.gstatic.com storage.googleapis.com maxcdn.bootstrapcdn.com data:; frame-src youtube.com www.youtube.com www.googletagmanager.com td.doubleclick.net 'self'; img-src * data: blob: 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' d38p570wb3yztx.cloudfront.net cdn.tiny.cloud maps.goo
strict-transport-security
max-age=31536000; includeSubdomains; preload

Links to (7)

Linked from (1)