indexo.dev

colophon-foundry.org

.org crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 230 ms crawled 2026-05-19

US · 104.18.41.247 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

sector other type homepage

HTML metadata

Title
Colophon has moved
Language
en

Technology

CDN
Cloudflare
Cookie consent
  • OneTrust

Third-party hosts loaded (1)

  • cdn.cookielaw.org×1

Registration

Registrar
GoDaddy.com, LLC
Created
2009-03-27
Expires
2027-03-27 311 days left
Updated
2026-05-11
Name servers
  • peyton.ns.cloudflare.com
  • tina.ns.cloudflare.com

DNS records live

NS
  • peyton.ns.cloudflare.com
  • tina.ns.cloudflare.com
MX
  • 0 colophonfoundry-org02b.mail.protection.outlook.com
Verified for
  • Google
  • Microsoft 365
  • Pinterest

Email authentication partial

SPF
v=spf1 a mx include:spf.protection.outlook.com include:_spf.perfora.net include:_spf.kundenserver.de include:_spf.createsend.com include:_spf.google.com ~all
softfail (~all)
DMARC
v=DMARC1;p=none;pct=100;rua=mailto:80dc40ae44@rua.easydmarc.com;ruf=mailto:80dc40ae44@ruf.easydmarc.com;fo=1
policy: none (monitoring only)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3YU2fySQJqjsLSYpMW0YLN2iL4nWDI5wHCMxXI1GDFoX2c8BfH5H1QBwY++LwolLbDnFdI29J4wCywY4qy…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA146Lr3TeWNc54yB1sThJCfIgFg5HBd/s/y9/LcPOrlJ7BdYUm2DOb1f9DX0KQT2rQSRtjbhUbAVVoI19Qh…
selectors probed

Certificate (current)

WE1
from 2026-05-12 to 2026-08-10
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.colophon-foundry.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self';media-src 'self' js.intercomcdn.com; connect-src 'self' https://cdn.cookielaw.org api-iam.intercom.io nexus-websocket-a.intercom.io api-iam.intercom.io nexus-websocket-a.intercom.io wss://nexus-websocket-a.intercom.io heapanalytics.com cdn.cookielaw.org geolocation.onetrust.com www.google-analytics.com *.clarity.ms api.sail-personalize.com api.company-target.com stats.g.doubleclick.net tag-logger.demandbase.com;default-src 'self';frame-src 'self' js.driftt.com s.company-target.com intercom-sheets.com;script-src 'self' widget.intercom.io *.intercomcdn.com cdn.heapanalytics.com www.googletagmanager.com cdn.cookielaw.org tag.demadbase.com www.clarity.ms ak.sail-horizon.co www.google-analytics.com tag.demandbase.com ak.sail-horizon.com 'unsafe-inline';style-src 'self' 'unsafe-inline' www.googletagmanager.com fonts.googleapis.com; font-src 'self' fonts.googleapis.com fonts.gstatic.com fonts.intercomcdn.com;img-src 'self' *.intercomcdn.com www.google-analytics.com font
strict-transport-security
max-age=31536000; includeSubDomains

Links to (3)

Linked from (7)