cityofconcord.org

.org crawl

First seen 2026-04-21 · Last seen 2026-05-14 · ok HTTP/1.1 200 2797 ms crawled 2026-05-14

US · 207.38.74.128 · AS36489 IP Pathways, LLC

Reputation 100/100

Classifying

HTML metadata

Title: Concord, CA | Official Website
Language: en

Technology

Server: Microsoft-IIS

Analytics

Google Tag Manager

Third-party hosts loaded (3)

docaccess.com×1
www.facebook.com×1
www.googletagmanager.com×1

Contact

Email

cityinfo@cityofconcord.org

Phone

9256713430

Registration

Registrar

NameSecure L.L.C.

Created

2000-12-15

Expires

2030-12-15 1670 days left

Updated

2025-12-14

Name servers

ns1.ci.concord.ca.us
ns2.ci.concord.ca.us

DNS records live

NS

ns1.ci.concord.ca.us
ns2.ci.concord.ca.us

MX

10 mx0a-0008ae01.pphosted.com
10 mx0b-0008ae01.pphosted.com

TXT

Show 6 TXT records

MS=A5EEFFB0B6705431C44FCA54F9CFFC8F7EA71E15
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeyOecvwMclYocFPjm459Mtzb8LzUblv5jRVgMqA4pcYAehmW3mZaK/lBMtIox2nJC6fJqUtJbs7QTAly1NWI71IWxYVoKF6vPJApN07Y4Vm9XgAKtkszC+LbMQf7TTorCJYZAVX7rw5tTzeyZXluH681v8MyqH+G8XWssO92CEQIDAQAB
docusign=6e3f2beb-c4fc-42b0-a7e1-0c66ab1be34b
+hiTqpwDS6xtZCA+G+kV13eEeJFaPXzwqm4LQXZ9ezzCZ7SjJUHG+71qb5aKU71NQegC3IIjrkWnhH8c2AU2bQ==
apple-domain-verification=cGfBI3fe2sO255y7
google-site-verification=1WlilZhod1ifUD5EKA7IXgDaiCNvXJJt7NYFgoiPbGI

Email authentication strong

SPF

v=spf1 ip4:148.163.152.207 ip4:148.163.148.207 mx include:em6651.cityofconcord.org include:spf.protection.outlook.com include:_spf.emailcampaigns.net include:spf.zohomail360.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com;ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com

policy: quarantine

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxohT/fNzA7T0ITGBMTuB8OSWr89Xi+W62Ci1u3EVY0aN/wDu5iDTV2MD6QdRRzfhmInfG/aThrKUL2wju…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JMdnIW/VShcwMUgCe9WDpd1GHfuhG7UsdmXLYk0iR8LVtKdf96EXxfbE6ZAXUjY6vIzTFNWsLjKJeLBZx…

selectors probed

Certificate (current)

R13

from 2026-05-01 to 2026-07-30

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://cityofconcord.org/

present

content-security-policy
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (2)

civicplus.com×2
governmentjobs.com×2

Linked from (2)

greatkolor.net×2
greatkolor.org×2