canalrivertrust.org.uk
HTML metadata
Technology
- CDN
- Cloudflare
- Analytics
-
- Cloudflare Insights
- Google Tag Manager
- Plausible
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (7)
- www.googletagmanager.com×2
- consentcdn.cookiebot.com×1
- dev.visualwebsiteoptimizer.com×1
- munchkin.marketo.net×1
- plausible.io×1
- registry.blockmarktech.com×1
- static.cloudflareinsights.com×1
Social
Contact
- Address
- Canal & River Trust National Waterways Museum South Pier Road, CH65 4FW, Ellesmere Port, Cheshire, GB
Registration
- Registrar
- Tucows Inc t/a Tucows
- Created
- 2011-08-15
- Expires
- 2026-08-15 87 days left
- Updated
- 2025-07-09
- Name servers
-
- kristina.ns.cloudflare.com.
- ridge.ns.cloudflare.com.
DNS records live
- NS
-
- kristina.ns.cloudflare.com
- ridge.ns.cloudflare.com
- MX
-
- 10 mxa-007a4601.gslb.pphosted.com
- 10 mxb-007a4601.gslb.pphosted.com
- TXT
-
Show 8 TXT records
4782b1ff0efd4b2e996cd25b859c8aacMS=ms23235913apple-domain-verification=nbaC8Dhmfugr1eQjfacebook-domain-verification=rhsxxpgrkqycdukti0l5qc4vamd5zagoogle-site-verification=Ik_EmeW_QesXtPZ7B-O9Kvmm_9Fi_rRkNOotG3hTq5wgoogle-site-verification=gh86yzvBKHUIqpw5JC6NV-PXmsmbRawgMec-FpzRHFogoogle-site-verification=vuDHRE8cPHmzyS1xyHCufi86y5HJcFf2pE1rybA9HRIxnet251lZvljfFzWc12tS72flg8XSfxEQRD/x0YCxuPEJC+5kg6t1syWoEI0sxYjdQWk/ThVE230iVPz0lV8/Q==
Email authentication strong
- SPF
-
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; fo=1; adkim=r; aspf=r; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc_agg@vali.email; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;policy: reject (enforced) - DKIM
-
Show 5 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OMLPAFOdsvTFPxumBGwAwufj5stYtSSE0TdwVxO2fOjGjuHZ7kMcmk4ioU5U6A7gkbY0Ztg8Zgf18… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyieoDrvbBlb96HHR/aSCYt8Jc36y+wsqm5GYmhPW2zSaTxZgkjPqSr8qB+IeQPc8VNVPx2to7KgTUH… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5xpQeXbP3fBo+PfH4zsO9qN5ug2ZuV0cjy9d+DpJoWLomF+6L0MJH8/oPNZPdSxKMHH9pi48Bs7a/q/hx… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCs8oT4CicatDts47f9v6/nXyZ8mWdvUxQL/IyIO+8o/6kk+a8wHeFo5iRLeXvWqCRoyPf2AfmvXZQJzAHxLiR9hx…
selectors probed - selector1:
Certificate (current)
WE1
Expires in 78 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-content-type-options
nosniff- content-security-policy
default-src https:; font-src https: data:; style-src https: 'unsafe-inline' *.visualwebsiteoptimizer.com app.vwo.com; script-src https: 'unsafe-inline' 'unsafe-eval' https://static.olark.com https://www.googletagmanager.com; script-src-elem https: 'unsafe-inline' 'unsafe-eval' https://static.olark.com https://www.googletagmanager.com *.visualwebsiteoptimizer.com app.vwo.com; img-src https: data: blob: *.visualwebsiteoptimizer.com app.vwo.com useruploads.vwo.io; media-src https: https://static.olark.com data: blob:; worker-src 'self' blob:; child-src https: blob: *.visualwebsiteoptimizer.com app.vwo.com; connect-src https: wss: ws://localhost properties *.visualwebsiteoptimizer.com app.vwo.com; frame-ancestors 'self' https://*.canalrivertrust.org.uk- strict-transport-security
max-age=31536000; includeSubDomains; preload