bluefieldproject.org
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- ajax.googleapis.com×1
- www.googletagmanager.com×1
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2010-03-12
- Expires
- 2027-03-12 296 days left
- Updated
- 2024-06-27
- Name servers
-
- ns17.domaincontrol.com
- ns18.domaincontrol.com
DNS records live
- NS
-
- ns17.domaincontrol.com
- ns18.domaincontrol.com
- MX
-
- 10 aspmx.l.google.com
- 20 alt1.aspmx.l.google.com
- 30 alt2.aspmx.l.google.com
- 40 aspmx2.googlemail.com
- 50 aspmx3.googlemail.com
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current) wrong cert
R13
Expires in 67 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' data:; report-uri /csp.cfm; style-src 'self' 'unsafe-inline' fonts.googleapis.com *.typekit.net *.twimg.com *.twitter.com; font-src 'self' data: https:; frame-ancestors 'self'; frame-src 'self' player.vimeo.com *.youtube.com www.google.com *.twitter.com prezi.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' ajax.googleapis.com www.google-analytics.com www.googletagmanager.com maps.googleapis.com *.twimg.com *.twitter.com; img-src 'self' data: *.google-analytics.com maps.googleapis.com maps.gstatic.com www.googletagmanager.com *.twimg.com *.twitter.com www.paypalobjects.com; connect-src 'self' *.google-analytics.com- strict-transport-security
max-age=15768000
Links to (3)
- hanechow.com×2
- iqvia.com×2
- twitter.com×2