desertmthoa.com
HTML metadata
Technology
- Server
- Microsoft-IIS
Third-party hosts loaded (1)
- docaccess.com×1
Contact
- Phone
- Address
- st Desert Hills Drive Suite 100Scottsdale, AZ 85262
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2015-08-11
- Expires
- 2029-08-11 1179 days left
- Updated
- 2024-08-07
- Name servers
-
- ns25.domaincontrol.com
- ns26.domaincontrol.com
DNS records live
- NS
-
- ns25.domaincontrol.com
- ns26.domaincontrol.com
- MX
-
- 10 us-smtp-inbound-2.mimecast.com
- 5 us-smtp-inbound-1.mimecast.com
- TXT
-
ms59682384MS=ms22818658
Email authentication strong
- SPF
-
v=spf1 redirect=ccmcnet.comno all qualifier - DMARC
-
v=DMARC1; p=reject; rua=mailto:452d55e1a8b6712@rep.dmarcanalyzer.com; ruf=mailto:452d55e1a8b6712@for.dmarcanalyzer.com; fo=1;policy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14CQ0fu6NBDLrj0DuczKwRuIOIJOMq+NIS42ykv7PGvxHKRq+ScsXstzFBBB4FIGVB1kbFlZz6Mx+y…
selectors probed - selector1:
Certificate (current)
R12
Expires in 78 days
HTTP security headers
- present
-
- content-security-policy
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *