everway.com
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- nginx
- CMS
- Next.js
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (3)
- everway.cdn.prismic.io×16
- images.prismic.io×10
- www.googletagmanager.com×1
Social
Registration
- Registrar
- Amazon Registrar, Inc.
- Created
- 1999-09-27
- Expires
- 2026-09-27 131 days left
- Updated
- 2026-05-13
- Name servers
-
- ns-1067.awsdns-05.org
- ns-1912.awsdns-47.co.uk
- ns-341.awsdns-42.com
- ns-549.awsdns-04.net
DNS records live
- NS
-
- ns-1067.awsdns-05.org
- ns-1912.awsdns-47.co.uk
- ns-341.awsdns-42.com
- ns-549.awsdns-04.net
- MX
-
- 1 smtp.google.com
- TXT
-
Show 4 TXT records
google-site-verification=9hdJfDTVXx1NwQQa2-gdh8GM-LIjT9HZw9W7nJGTU0sgoogle-site-verification=C-wW67a7eF6g4va2u-Bj9FxxXM-of56UHWdl3f1Sccggoogle-site-verification=W17elv8d2jKVBZiDUf9E48fn2mqbUCPz1JZWr3_DUWsapple-domain-verification=91lasDSGNXXIjWEM
Email authentication strong
- SPF
-
v=spf1 include:_u.everway.com._spf.dmarclj.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:69316b9635a3d@ag.dmarcly.com; ruf=mailto:69316b9635a3d@fo.dmarcly.com; sp=none; fo=0;policy: reject (enforced) · sp=none - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJU1B2I6dBlQ3d3kVgPCbcAASw15tHeGx20e8svzEtREBatUqn+EVVBkLlGT7bFcNPtjfOt1ogqExh… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjvAOKPBhYCGgWTdS2IR8N+VKen/EW6f8YDT+OJRofGP4/ssVm0nG9UT4VXjBbVcERI17PVHHvekah5JK8… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQPY7tAdPQ8JqOgXzqCKi6y4dP2eU5Reg1Ta+DG401j1w+x5xeAHGXsbCBm/Ryh++bweHrjA5C9fLoAJDLho+l4Z…
selectors probed - google:
Certificate (current)
Amazon RSA 2048 M01
Expires in 284 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- referrer-policy
- findings
-
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- content-security-policy
default-src 'self'; script-src 'unsafe-eval' 'self' https://*.googletagmanager.com https://googletagmanager.com https://tagmanager.google.com https://www.googleadservices.com https://www.google.com https://pagead2.googlesyndication.com https://googleads.g.doubleclick.net https://consent.cookiebot.com https://consentcdn.cookiebot.com https://static.cdn.prismic.io https://prismic.io https://texthelp.tfaforms.net https://www.google.com https://www.gstatic.com https://s.saleswingsapp.com https://static.hotjar.com https://script.hotjar.com https://plus.browsealoud.com https://www.browsealoud.com https://*.speechstream.net https://www.googletagmanager.com https://www.google-analytics.com https://apis.google.com https://wikisum.texthelp.com https://mautic.texthelp.com https://mautic-staging.texthelp.com https://embed.typeform.com/next/embed.js https://connect.facebook.net https://snap.licdn.com https://www.youtube.com https://*.amplitude.com https://a.omappapi.com/ https://player.cloudinary.c- strict-transport-security
max-age=15552000