buyolympia.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-20 · ok HTTP/1.1 200 1050 ms crawled 2026-05-18

US · 18.165.140.6 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

buyolympia.com - Bringing you amazing new work since 1999.

Description

We are a small independent retailer featuring the amazing work from over 100 artists since 1999.

Language

Feeds

buyolympia.com latest products RSS RSS

Open Graph

title: We are buyolympia.
site name: buyolympia
description: Connecting you with art that inspires wonder, brings a smile to your face and encourages you to be who you are.

Technology

CDN: Amazon CloudFront
Server: CloudFront

Fonts

Adobe Fonts

Third-party hosts loaded (4)

cdn.buyoly.com×72
js.stripe.com×1
use.typekit.net×1
www.facebook.com×1

Social

Registration

Registrar

Amazon Registrar, Inc.

Created

1999-06-05

Expires

2027-06-05 380 days left

Updated

2026-05-16

Name servers

ns-1406.awsdns-47.org
ns-1950.awsdns-51.co.uk
ns-225.awsdns-28.com
ns-543.awsdns-03.net

DNS records live

NS

ns-1406.awsdns-47.org
ns-1950.awsdns-51.co.uk
ns-225.awsdns-28.com
ns-543.awsdns-03.net

MX

10 mx1-us1.ppe-hosted.com
20 mx2-us1.ppe-hosted.com

TXT

ppe-157c943b488be49b92ef

Verified for

Apple
Microsoft 365

Email authentication strong

SPF

v=spf1 a:mail.buyolympia.com a:dispatch-us.ppe-hosted.com include:_spf.createsend.com include:spf.mtasv.net include:smtp.groovehq.com ip4:23.21.59.133 ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:re+hmovs4ol7my@inbound.dmarcdigests.com; pct=100

policy: quarantine · sp=quarantine

DKIM

smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-04-06 to 2026-10-21

Expires in 153 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://buyolympia.com/

present

content-security-policy-report-only

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy-report-only: child-src js.stripe.com; connect-src 'self' geoip-js.com api.stripe.com maps.googleapis.com www.paypal.com www.facebook.com; font-src use.typekit.net; form-action 'self' www.facebook.com; frame-src js.stripe.com hooks.stripe.com www.facebook.com www.paypal.com www.youtube.com; img-src 'self' cdn.buyoly.com data: dg6xfr3y1xvv2.cloudfront.net p.typekit.net t.paypal.com www.facebook.com; script-src-elem 'unsafe-inline' cdn.buyoly.com connect.facebook.net js.stripe.com use.typekit.net www.paypal.com geoip-js.com www.paypalobjects.com; script-src 'unsafe-inline' cdn.buyoly.com connect.facebook.net js.stripe.com maps.googleapis.com use.typekit.net; style-src-attr 'unsafe-inline'; style-src-elem 'unsafe-inline' cdn.buyoly.com code.jquery.com; style-src cdn.buyoly.com code.jquery.com; report-uri https://buyolympia.report-uri.com/r/d/csp/wizard

Links to (2)

facebook.com×3
instagram.com×3