indexo.dev

blackwells.co.uk

.uk crawl

First seen 2026-04-11 · Last seen 2026-05-20 · ok HTTP/1.1 200 1544 ms crawled 2026-05-18

US · 172.64.147.227 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Blackwell's, books for life and for learning Blackwell's
Description
Trading since 1879, Blackwell of Oxford is the largest academic and specialist bookseller in the UK. Fast dispatch, carefully packaged, worldwide delivery.
Language
en
Canonical
https://blackwells.co.uk/bookshop/home
Translations
  • en ×61

Technology

CDN
Cloudflare
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • cdnjs.cloudflare.com×2
  • fonts.googleapis.com×2
  • cdn-cookieyes.com×1
  • fonts.gstatic.com×1
  • mstdn.social×1
  • unpkg.com×1
  • use.typekit.net×1
  • www.googletagmanager.com×1

Social

Contact

Address
st online scamsComplaint ProcessContact UsFollow us on:FacebookXYouTubeInstagram©1879

Registration

Registrar
34SP.com Limited
Created
1996-12-11
Expires
2026-12-11 203 days left
Updated
2024-12-11
Name servers
  • gwen.ns.cloudflare.com.
  • oswald.ns.cloudflare.com.

DNS records live

NS
  • gwen.ns.cloudflare.com
  • oswald.ns.cloudflare.com
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 20 eu-smtp-inbound-2.mimecast.com
TXT
  • 0ed1fe018a0cc0d097d47e491f97bee3b1305dfb86

Email authentication partial

SPF
v=spf1 ip4:213.177.248.96/27 ip4:87.117.239.69/32 include:eu._netblocks.mimecast.com include:_spf.pur3.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:05b6c5634047570@rep.dmarcanalyzer.com; ruf=mailto:05b6c5634047570@for.dmarcanalyzer.com; fo=1;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-16 to 2026-07-15
Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://blackwells.co.uk/bookshop/home

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
Header values
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), gyroscope=(), magnetometer=(), microphone=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; object-src https://cdn.waterstones.com; img-src 'self' data: https:; font-src 'self' data: https:; connect-src 'self' data: https:; style-src 'self' 'unsafe-inline' https://*.typekit.net https://unpkg.com https://cdnjs.cloudflare.com https://fonts.googleapis.com https://www.jellybooks.com https://assets.braintreegateway.com https://shop.blackwellmapping.co.uk; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://js.braintreegateway.com https://songbird.cardinalcommerce.com https://static.client.cardinaltrusted.com https://cas.static.client.cardinaltrusted.com https://cdnjs.cloudflare.com https://cdn-cookieyes.com https://connect.facebook.net https://googleads.g.doubleclick.net https://pay.google.com https://www.google.com https://www.google-analytics.com https://ajax.googleapis.com https://www.googletagmanager.com https://www.gstatic.com https://www.jellybooks.com https://code.jquery.com https://*.paypal.com https://www.paypalobjects.com https://unpkg.com https:/
strict-transport-security
max-age=31536000 ; includeSubDomains

Links to (6)

Linked from (47)