cottonbird.uk

.uk crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1072 ms crawled 2026-05-19

FR · 51.68.49.216 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Cotton Bird
Language: en
Canonical: https://www.cottonbird.uk//

Technology

Server: nginx

Analytics

Google Tag Manager

Third-party hosts loaded (2)

www.google.com×1
www.googletagmanager.com×1

Social

Contact

Phone

+33 4 68 68 48 71

Registration

Registrar

OVH

Created

2022-01-21

Expires

2027-01-21 246 days left

Updated

2026-01-01

Name servers

ns4.makolab.pl.
panel6-dns.makolab.pl.

DNS records live

NS

dns1.net4u.pl
ns4.makolab.pl
panel6-dns.makolab.pl

MX

10 pmg.makolab.pl

TXT

klaviyo-site-verification=SRLLeN

Email authentication partial

SPF: v=spf1 a mx a:cottonbird.uk ip4:193.239.137.24 ip4:193.28.230.254 ip6:fe80::5652:ff:fe0e:fa6c include:mail.zendesk.com include:amazonses.com include:sendgrid.net ~all
softfail (~all)
DMARC: v=DMARC1; p=none; rua=mailto:rua@cottonbird.uk; ruf=mailto:ruf@cottonbird.uk; rf=afrf; fo=1:d:s; adkim=r; aspf=r
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

from 2026-04-28 to 2026-07-27

Expires in 69 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.cottonbird.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
weak frame protection
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: sameorigin, DENY
x-content-type-options: nosniff
content-security-policy: default-src https: wss: blob: 'unsafe-eval' 'unsafe-inline' data:; object-src 'self'; img-src blob: http: https: data:; base-uri 'self';
strict-transport-security: max-age=3155760000;