bluebadgeaccessawards.com
HTML metadata
Technology
- Server
- LiteSpeed
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (6)
- code.jquery.com×3
- static.addtoany.com×2
- www.googletagmanager.com×2
- www.youtube.com×2
- fonts.googleapis.com×1
- fonts.gstatic.com×1
Social
Contact
- Address
- rd Winners (& Loser) 2023
Registration
- Registrar
- Register SPA
- Created
- 2018-08-03
- Expires
- 2026-08-03 75 days left
- Updated
- 2024-09-08
- Name servers
-
- ns0.phase8.net
- ns1.phase8.net
- ns2.phase8.net
DNS records live
- NS
-
- ns0.phase8.net
- ns1.phase8.net
- ns2.phase8.net
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
google-site-verification=vyNBs0uKMsYQ7Ob5i0FxBLERCJLGrS00ofH3legECAk
Email authentication weak
- SPF
-
v=spf1 ip4:185.53.58.58 ip4:62.100.204.244 +a +mx +ip4:195.242.220.51 include:_spf.google.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 57 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
sameorigin- permissions-policy
camera=(self), microphone=(self), geolocation=*, usb=(self)- x-content-type-options
nosniff- content-security-policy
img-src * 'self' data: https:; base-uri 'none'; object-src 'none'; upgrade-insecure-requests;- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin-allow-popups- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
cross-origin