daybird.co
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Shopify
Third-party hosts loaded (7)
- cdn.shopify.com×28
- monorail-edge.shopifysvc.com×2
- shop.app×2
- c.albss.com×1
- cdn-static.okendo.io×1
- fonts.shopify.com×1
- subscription-admin.appstle.com×1
Social
DNS records live
- NS
-
- ns35.domaincontrol.com
- ns36.domaincontrol.com
- MX
-
- 1 aspmx.l.google.com
- 10 alt3.aspmx.l.google.com
- 10 alt4.aspmx.l.google.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
Show 4 TXT records
google-site-verification=lHFBW7ZeXOuF9xEGIAsTob8lX9U9EKTIfNst8TvkZBYgoogle-site-verification=7KMa4qe2Oxsh7NCOPXCNn-uFpA0v9n_vF2ICzyy95eQmandrill_verify.EvYm5tvZ9EDo0QX1_oWORggoogle-site-verification=y7aixnVhy9FDHPUkEfa_XSeIflE-wsPXw4hdpnOVMSc
Email authentication partial
- SPF
-
v=spf1 include:mailgun.org include:spf.mandrillapp.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:dmarc-reports@daybird.copolicy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
E7
Expires in 45 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- short HSTS max-age
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;- strict-transport-security
max-age=7889238