cityofsthelena.gov

.gov user

First seen 2026-05-20 · Last seen 2026-05-20 · ok HTTP/1.1 200 813 ms crawled 2026-05-20

US · 207.38.75.8 · AS36489 IP Pathways, LLC

Reputation 100/100

Classifying

HTML metadata

Title: St Helena, CA | Official Website
Language: en

Technology

Server: Microsoft-IIS
jQuery: 3.7.1
Stack: ASP.NET

Third-party hosts loaded (1)

docaccess.com×1

Social

Contact

Phone

675-0963-4267-96

Registration

Registrar

get.gov

Created

2024-08-30

Expires

2026-08-01 72 days left

Updated

2025-08-06

Name servers

ns1.p201.dns.oraclecloud.net
ns2.p201.dns.oraclecloud.net
ns3.p201.dns.oraclecloud.net
ns4.p201.dns.oraclecloud.net

DNS records live

NS

ns1.p201.dns.oraclecloud.net
ns2.p201.dns.oraclecloud.net
ns3.p201.dns.oraclecloud.net
ns4.p201.dns.oraclecloud.net

MX

0 cityofsthelena-gov.mail.protection.outlook.com

TXT

v=spf1 mx a:dispatch-us.ppe-hosted.com a:dispatch1-us1.ppe-hosted.com ip4:50.175.200.211 ip4:74.114.66.241 include:relay101.aspgov.com include:spf.protection.outlook.com ~all
duo_sso_verification=UW9bSsRmaGPAW3iz0xyW2GWuiv2RTbjUtavzoLq5rAy9eOJ3BnMHztBIsMPrO7zR

Verified for

Google

Certificate (current)

R12

from 2026-05-17 to 2026-08-15

Expires in 86 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://cityofsthelena.gov/

present

content-security-policy
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *