indexo.dev

coralville.org

.org crawl

First seen 2026-04-20 · Last seen 2026-05-20 · ok HTTP/1.1 200 5134 ms crawled 2026-05-14

US · 208.90.191.241 · AS36489 IP Pathways, LLC

Reputation 100/100

Classifying

HTML metadata

Title
Coralville, IA - Official Website | Official Website
Description
Visit the City of Coralville website for news, updates, and information. Stay connected with our community!
Language
en

Technology

Server
Microsoft-IIS
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • docaccess.com×1
  • i.simpli.fi×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
GoDaddy.com, LLC
Created
1998-08-28
Expires
2026-08-27 98 days left
Updated
2025-10-11
Name servers
  • carol.ns.cloudflare.com
  • finley.ns.cloudflare.com

DNS records live

NS
  • carol.ns.cloudflare.com
  • finley.ns.cloudflare.com
MX
  • 0 coralville-org.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 ip4:64.237.30.2/32 ip4:66.43.203.192/27 ip4:207.191.202.58/32 include:spf.protection.outlook.com include:spf.constantcontact.com include:_xnspf.paymentus.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:48be8dfb3cd34afa8b84ce681ebb1dd9@dmarc-reports.cloudflare.net;
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw26xle8uqmPEi8RJHKINBhKPs2wAp+h5hUN4o1SzaXbRPCQIBaSqIddriliY/Tk/niiYkgYWLLg/Iw…
selectors probed

Certificate (current)

R13
from 2026-04-07 to 2026-07-06
Expires in 47 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://coralville.org/

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (8)

Linked from (3)