bpo.co.uk

HTML metadata

Technology

CDN

Cloudflare

Analytics

• Google Tag Manager

Third-party hosts loaded (1)

• www.googletagmanager.com×1

DNS records live

NS

• ns27.domaincontrol.com
• ns28.domaincontrol.com

MX

• 10 mx1-eu1.ppe-hosted.com
• 20 mx2-eu1.ppe-hosted.com

TXT

• sophos-domain-verification=101051f42bcaf5134ac15a9ed065177d6051c075a3c6e78420474a69145dd2e9
• sophos-domain-verification=1e3fec863592308b5f35c54a20aa52de0d3b7064
• proxy-ssl.webflow.com

Verified for

• Apple
• Brevo
• Google
• Notion
• Zoho

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:_spf-eu.ppe-hosted.com include:_relay.amadeus.com include:one.zoho.eu -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; pct=100

policy: quarantine

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NhCtOPZPzX1newapt0IY5IcyAZx1JR/XgnKGSgzR4uxuT/sgmis2SrwJGc0vEmsGJgDB2ImyKNSNK…
• mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://bpo.co.uk/

present

• strict-transport-security
• x-content-type-options
• referrer-policy

findings

• missing Content Security Policy
• missing frame protection
• missing Permissions Policy

Linked from (1)

• bluebirdtravel.com×1