duncanandtoddgroup.com

.com crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 1061 ms crawled 2026-06-02

GB · 83.223.106.83 · AS29017 NTT Global Data Centers EMEA UK Ltd.

Reputation 100/100

Classifying

HTML metadata

Title: Leading optical providers based in Scotland | Duncan & Todd Group
Description: The Duncan and Todd Group is one of the leading optical providers based in Scotland.
Language: en
Canonical: https://www.duncanandtoddgroup.com/

Open Graph

url: https://duncanandtoddgroup.com/
title: Homepage - Duncan & Todd Group
locale: en_GB
site name: Duncan And Todd Group
description: The Duncan and Todd Group is one of the leading optical providers based in Scotland.
locale:alternate: en_GB

Technology

Server: Apache

Fonts

Adobe Fonts

Third-party hosts loaded (3)

use.typekit.net×2
js-eu1.hs-scripts.com×1
www.facebook.com×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2016-08-15

Expires

2027-08-15 435 days left

Updated

2026-03-02

Name servers

ns59.domaincontrol.com
ns60.domaincontrol.com

DNS records live

NS

ns59.domaincontrol.com
ns60.domaincontrol.com

MX

5 mx4.cloud.castle-cs.com

TXT

ppe-c40826fce2ad94fbd353f9b211a2fdb3418855f7

Verified for

Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com a:dispatch-eu.ppe-hosted.com include:smtp.converged.co.uk ip4:77.73.168.0/23 include:optix.co.uk include:_spf.cmail.ondemand.com include:amazonses.com include:spf.cloud.castle-cs.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; adkim=r; aspf=r; rua=mailto:dmarc_rua@onsecureserver.net;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3DTiLWdW4OWFhUDN9e49FM66InmQVcsEqJLdVpvVI+3nqA1ZgFJ5oOkwSieYAc0vdEiK6ZONrG7Qq…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKz2o6AeYF7+Ov6YlvDwEfTbwdML5IPMQqK3biz+HA66ik3G5XFsdMhwCNW5MyC9hhRY5iQkbmJ6ph…

selectors probed

Certificate (current)

R12

from 2026-05-08 to 2026-08-06

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://duncanandtoddgroup.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=self, microphone=(), camera=(), fullscreen=self
x-content-type-options: nosniff
content-security-policy: default-src * data:; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload