bonnierbooks.co.uk
bonnierbooks.co.uk
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Ads
-
- Google Ads (DoubleClick)
- Meta Pixel
- TikTok Pixel
- Cookie consent
-
- OneTrust
Third-party hosts loaded (10)
- www.googletagmanager.com×4
- cdn-ukwest.onetrust.com×3
- static.srcspot.com×2
- analytics.tiktok.com×1
- connect.facebook.net×1
- gmpg.org×1
- googleads.g.doubleclick.net×1
- pixel.byspotify.com×1
- snap.licdn.com×1
- static.ads-twitter.com×1
Social
Registration
- Registrar
- Safenames Ltd
- Created
- 2006-09-20
- Expires
- 2026-09-20 122 days left
- Updated
- 2024-09-12
- Name servers
-
- dns1.safenames.com.
- dns2.safenames.net.
- dns3.safenames.org.
DNS records live
- NS
-
- dns1.safenames.com
- dns2.safenames.net
- dns3.safenames.org
- MX
-
- 0 eu-smtp-inbound-1.mimecast.com
- 0 eu-smtp-inbound-2.mimecast.com
- TXT
-
iVFFJq970gjpNTtKyV/jUaLgxa9wkLmwDLQVHyoiXhPHJtgATKAtAXCYG2Jtk0B+q42yHoCWRr17RYFonJoUEw==9m665mlslk9s70hdvjb2cjovcf
- Verified for
-
- Apple
- DocuSign
- Workplace
Email authentication strong
- SPF
-
v=spf1 include:eu._netblocks.mimecast.com include:servers.mcsv.net ip4:195.167.133.243/28 ip4:188.39.117.248/29 ip4:84.207.248.90 ip4:205.201.128.0/20 ip4:198.2.128.0/18 ip4:148.105.0.0/16 ip4:87.252.58.130 ip4:5.148.147.130 ip4:109.176.85.66 include:spf.mandrillapp.com include:_spf.virtusales.com include:spf.UK.exclaimer.net ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:479b6514a025500@rep.dmarcanalyzer.com; ruf=mailto:479b6514a025500@for.dmarcanalyzer.com;policy: none (monitoring only) - DKIM
-
- selector2:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDv/A09vISVncyDwCjC7eNeuuMmaGslw+nFVzVHGljcU7kQcH2rKPgO13Dd3RkYUEM1Y3QsG33SOpiR8+Wvlr… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - selector2:
Certificate (current)
WE1
Expires in 57 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
ambient_light_sensor=()- x-content-type-options
nosniff- content-security-policy
connect-src 'self' https://cdn-ukwest.onetrust.com https://analytics.tiktok.com https://geolocation.onetrust.com https://stats.g.doubleclick.net https://www.google-analytics.com https://www.googletagmanager.com https://cdn.linkedin.oribi.io https://pagead2.googlesyndication.com *.spotify.com *.googleadservices.com *.jobylon.com *.google.com *.linkedin.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://snap.licdn.com/li.lms-analytics/insight.min.js; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' https://cdn-ukwest.onetrust.com https://www.googletagmanager.com https://www.google-analytics.com https://static.ads-twitter.com https://analytics.tiktok.com https://static.srcspot.com https://connect.facebook.net https://googleads.g.doubleclick.net https://snap.licdn.com/li.lms-analytics/insight.min.js https://snap.licdn.com/li.lms-analytics/insight.beta.min.js https://pixel.byspotify.com/ping.min.js *.gstatic.com *.linkedin.com https://www.google.com https://snap.licdn.com/li.l- strict-transport-security
max-age=63072000- cross-origin-opener-policy
unsafe-none- cross-origin-embedder-policy
unsafe-none