eluv.io

HTML metadata

Technology

Analytics

• Google Tag Manager

Third-party hosts loaded (1)

• www.googletagmanager.com×1

DNS records live

NS

• ns13.domaincontrol.com
• ns14.domaincontrol.com

MX

• 10 aspmx.l.google.com
• 20 alt1.aspmx.l.google.com
• 30 alt2.aspmx.l.google.com
• 40 aspmx2.googlemail.com
• 50 aspmx3.googlemail.com

TXT

• apple-domain-verification=aqUdGaEeGUkWJttb
• google-site-verification=9wAHuZFVm4PmdEgt5tlN-X95muHgKHgixWLhNPNDnKc
• google-site-verification=vKx5wn96Ci8p-m2OqoR1DQWi7_S8_f76q8cXaal1ulk

Email authentication strong

SPF

v=spf1 a mx include:_spf.google.com include:mailgun.org include:6230377.spf08.hubspotemail.net include:mail.zendesk.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc-reports@eluv.io;

policy: quarantine

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKTcd88EJ9pfKPgfWFLsOE9dmc2Wd5fEaUR9JGKmsY6pmBOCnP3orktWpT/9i5vrrN67atZ9c8XkI6…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://eluv.io/

present

• strict-transport-security

findings

• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Linked from (1)

• hpaonline.com×2