bucksbs.co.uk

HTML metadata

Title: Buckinghamshire Building Society | Savings & Mortgages with a Personal Touch
Description: Helping our members save, borrow and thrive. Discover savings accounts, mortgages and community support delivered The Bucks Way.
Language: en

Technology

Server: Sucuri

Fonts

Adobe Fonts
Google Fonts

Third-party hosts loaded (7)

cdnjs.cloudflare.com×2
fonts.googleapis.com×2
fonts.gstatic.com×1
localhost×1
smartmoneypeople.com×1
use.typekit.net×1
www.google.com×1

Social

Contact

Phone

01494 879500

Registration

Registrar

123-Reg Limited t/a 123-reg

Created

2006-07-07

Expires

2032-07-07 2240 days left

Updated

2024-07-22

Name servers

ns1.bdm.microsoftonline.com.
ns2.bdm.microsoftonline.com.
ns3.bdm.microsoftonline.com.
ns4.bdm.microsoftonline.com.

DNS records live

NS

ns1.bdm.microsoftonline.com
ns2.bdm.microsoftonline.com
ns3.bdm.microsoftonline.com
ns4.bdm.microsoftonline.com

MX

0 bucksbs-co-uk.mail.protection.outlook.com

TXT

mscid=KX7UusNnRLW2gZjU2bDY8pz7zfJQ/Z5oaH+wYSbS2gp7QXnbmAC/y3efNpsLWL1W4W8w1Q5bQyVvLQr0aVGCWQ==
bcr17qg9vuqc3msdh5brficcmt

Email authentication strong

SPF

v=spf1 a mx ip4:91.222.9.138 ip4:51.132.211.80 ip4:51.141.87.32 ip4:91.206.119.0/24 ip4:157.96.26.204 ip4:157.96.26.212 ip4:168.245.96.0/19 include:which50-email.com include:sendgrid.net include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@bucksbs.co.uk; ruf=mailto:dmarc@bucksbs.co.uk; sp=quarantine; fo=1;

policy: quarantine · sp=quarantine

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCipI3LDIRjOo2Bi7qHIRwReVQmMi5IkBe2/UwjUj8AECh6a1k8d/PA8VH64KdzYlD0zTg00xjfOpjifNz7me…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCjxU9GoeZ9QfhC0WDFUZoICzVicLWrkps9LiE8DI5exoOeljXshX3wwnb400o9YCBcQl0E7wOnIvWZXBTk6U…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15PPP3rUi0XwEodR6kfk4FCqoUuCy8ABqRMwCpMSMHuBwe55B6jl9H/5ILV259Aiz9OODwdjfMOSLBGwCf…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDMaTylXa5hD5PdcCLmYA/NdCrlVWQokjHDWlvv6rkxDzX5jvgKQr5ipn44Nk6eDnEa42xHIuKEmCEw2SuEbEsQMr…

selectors probed

Certificate (current)

Starfield Secure Certificate Authority - G2

from 2026-05-12 to 2026-08-10

Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.bucksbs.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
weak content type protection

Header values

referrer-policy: same-origin, no-referrer-when-downgrade
x-frame-options: SAMEORIGIN, SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(self)
x-content-type-options: nosniff, nosniff
content-security-policy: upgrade-insecure-requests;, default-src 'self'; connect-src 'self' https://*.force.com https://*.googleadservices.com https://*.google-analytics.com https://*.google.co.uk https://*.googleapis.com https://*.liadm.com https://*.linkedin.com https://*.reciteme.com; frame-src 'self' https://*.force.com https://*.google.com/recaptcha/ https://smartmoneypeople.com https://*.youtube.com https://youtube.com https://*.vimeo.com https://vimeo.com https://*.legalandgeneral.com https://*.reciteme.com https://bucksbs.co.uk https://www.bucksbs.co.uk; img-src 'self' blob data: https://*.amazonaws.com https://*.bucksbs.co.uk https://*.google-analytics.com https://*.google.co.uk https://*.google.com https://*.gstatic.com https://*.linkedin.com https://*.twitter.com https://*.typekit.net https://*.reciteme.com https://t.co; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.ads-twitter.com https://*.cloudflare.com https://*.csl-group.com https://*.doubleclick.net https://*.force.com https://*.go
strict-transport-security: max-age=31536000