bluehaven.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Microsoft Clarity
- Fonts
-
- Adobe Fonts
Third-party hosts loaded (8)
- use.typekit.net×4
- use.typekit.com×3
- www.facebook.com×3
- maps.google.com×2
- www.google.com×2
- www.googletagmanager.com×2
- search-widget.canibuild.com×1
- www.clarity.ms×1
Social
Contact
- Address
- st Virginia (eastern region)WestchesterCopyright © 2025
Registration
- Registrar
- Domain.com - Network Solutions, LLC
- Created
- 1996-03-12
- Expires
- 2027-02-28 285 days left
- Updated
- 2026-02-08
- Name servers
-
- ben.ns.cloudflare.com
- rose.ns.cloudflare.com
DNS records live
- NS
-
- ben.ns.cloudflare.com
- rose.ns.cloudflare.com
- MX
-
- 1 aspmx.l.google.com
- 10 aspmx2.googlemail.com
- 10 aspmx3.googlemail.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 7 TXT records
MS=7BB616732E55BC5B4FC366B53CA58A53FDC02D4Fapple-domain-verification=12jRpiSlLqJlcMPjapple-domain-verification=pPzrKb1aXolWtMcObrevo-code:5b92a4399f57d410b99916cc5a4a358cfacebook-domain-verification=s6sxq9xhyjuis2s344niaqef017n3tglobalsign-domain-verification=ockx7RpOxmFDpLu3QL42qcss8WejnItBiHHQvQSymXgoogle-site-verification=P5WmkrkKh0ERp3oNvAkIvX3PqAyvfdVXuUpDgMSp-7o
Email authentication partial
- SPF
-
v=spf1 include:_spf.google.com include:mailgun.org ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.compolicy: none (monitoring only) - DKIM
-
- default:
v=DKIM1;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCOnQHvvV3iIVs0t+EYvYKQ1iUBILRd8RdXieq4Ziku8740JbOp6H0No160WznOFQzSVN0n7+W6Cu4YpSllktx… - google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCJPz6WqE5zJt+xOZb7tSBo2Yo954EAPQqMPXyhxmwrCUwd4clOJGXWGLuVrBmjlfuuARqPqrgTSqOETPAVKf… - mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Vn4Cq65nE/mhB41WCSdCwa39wwfS7qpKjdC3xVVN+b439VA9Ad87EncUgqsANxV+s4J/GyvzrZiaVH6UA… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz6rN0gAnmSeCeGRBtHHuaHc/xjMayvTqCAHMEpHP0egeruDFMolTZGmG9A+zgA+Fg6f/u4blLDa8X6rZj…
selectors probed - default:
Certificate (current)
WE1
Expires in 43 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
interest-cohort=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' data: ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.bugherd.com https://search-widget.canibuild.com https://sidebar.bugherd.com https://cdn.amcharts.com https://www.google.com https://www.gstatic.com https://cdnjs.cloudflare.com https://*.hsforms.net https://*.hsforms.com https://*.hubspot.com https://widget.canibuild.com https://cdn.trustindex.io https://acsbapp.com https://*.podium.com https://script.crazyegg.com https://js.hs-analytics.net https://cdn.attn.tv https://connect.facebook.net https://cdn.heapanalytics.com https://solutions.invocacdn.com https://js-na1.hs-scripts.com https://js.hs-banner.com https://c.amazon-adsystem.com https://rw1.marchex.io https://js.hs-scripts.com https://js.hscollectedforms.net https://clarity.microsoft.com https://www.clarity.ms data: https://*.clarity.ms https://yoast.com https://*.googletagmanager.com https://pagead2.googlesyndication.com https://js.usemessages.com https://*.doublec- strict-transport-security
max-age=31536000; includeSubDomains
Links to (4)
- facebook.com×3
- instagram.com×3
- linkedin.com×3
- x.com×3