indexo.dev

butlins.com

.com crawl

First seen 2026-05-02 · Last seen 2026-05-16 · ok HTTP/1.1 200 2299 ms crawled 2026-05-08

SE · 199.232.174.132 · AS54113 Fastly, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Butlin's: Book Family Holidays and Short Breaks at UK Holiday Parks
Description
Book your family holiday or short break at Butlin’s. Enjoy entertainment, activities & shows for all ages.
Language
en
Canonical
https://www.butlins.com/

Open Graph

title
Butlin's: Book Family Holidays and Short Breaks at UK Holiday Parks
locale
en_GB
site name
Butlin's: Book Family Holidays and Short Breaks at UK Holiday Parks
description
Book your family holiday or short break at Butlin’s. Enjoy entertainment, activities & shows for all ages.

Technology

CMS
Next.js
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust
Fonts
  • Adobe Fonts
Social widgets
  • Vimeo Embed

Third-party hosts loaded (6)

  • prod.butlins-prod.magnolia-platform.com×61
  • cdnjs.cloudflare.com×4
  • cdn-ukwest.onetrust.com×2
  • use.typekit.net×2
  • player.vimeo.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2000-01-04
Expires
2027-01-04 229 days left
Updated
2025-12-31
Name servers
  • udns1.cscdns.net
  • udns2.cscdns.uk

DNS records live

NS
  • udns1.cscdns.net
  • udns2.cscdns.uk
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 10 eu-smtp-inbound-2.mimecast.com
TXT
Show 8 TXT records
  • KuQwRdExwiuXuXfhfUo0UH2akFNyxzLl6CPfBB7MKQShmpyrcmAK3vclCoeom2l0+JZCTFE2FNsJm0KXvedepg==
  • MS=ms15462472
  • fastly-domain-delegation-724490-20231213
  • docusign=4e8b4614-72d6-407c-81f9-fe1dccb591c4
  • canva-site-verification=X6lx1ZwA0c_UpfuSmerfOg
  • facebook-domain-verification=5qljebcdmdidr6kr2jcb7dl1qnu8qf
  • onetrust-domain-verification=c879685b747d4af3ad18e96900da60c3
  • google-site-verification=ZC4OixUgdM6Nw7EkPN_OL-0_BramygJgNj3iz3ch7YM

Email authentication strong

SPF
v=spf1 redirect=aaqvoqaa._spf._d.mim.ec
no all qualifier
DMARC
v=DMARC1; p=reject; rua=mailto:72de9996014d938@rep.dmarcanalyzer.com; ruf=mailto:72de9996014d938@for.dmarcanalyzer.com; fo=1;
policy: reject (enforced)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ypTQNHmcVJtRgoHkBLeva5xk6pXeA2FkPYVlCDCbBi/eTyslnhsRR3qpHp0sSZK0Yg2KboiRTXiZpmEZV…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGqeT+285Q9prgsk5wFpmVnPY03LR/8Tc0QpmLif4D0FmgktVKAgI4CLR26tkMMqFxUWpK7g2NIGf7udhj…
selectors probed

Certificate (current)

R13
from 2026-04-06 to 2026-07-05
Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.butlins.com/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-content-type-options
nosniff
content-security-policy
default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: blob:; style-src 'self' 'unsafe-inline' https: data:; img-src 'self' data: https: blob:; font-src 'self' data: https:; connect-src 'self' https: wss:; media-src 'self' https:; base-uri 'self'; object-src 'none'; upgrade-insecure-requests; frame-ancestors 'self' https://*.magnolia-platform.com https://*.magnolia-platform.io
strict-transport-security
max-age=31536000; includeSubDomains

Links to (7)

Linked from (3)