indexo.dev

frhssd.org

.org crawl

First seen 2026-04-23 · Last seen 2026-05-14 · ok HTTP/1.1 200 6590 ms crawled 2026-05-17

US · 12.150.248.39 · AS7018 AT&T Enterprises, LLC

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title
Connection denied by Geolocation
Language
en

Registration

Registrar
GoDaddy.com, LLC
Created
2012-11-27
Expires
2026-11-27 190 days left
Updated
2025-01-11
Name servers
  • ns17.domaincontrol.com
  • ns18.domaincontrol.com

DNS records live

NS
  • ns17.domaincontrol.com
  • ns18.domaincontrol.com
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
TXT
  • 0ed1fe018a541ef485d9b244dfbb0f3eafb692cea7
  • UB0Wl97Kv3fs3dhpkmSwQAf+kPBy1HzzErQS4dOWFn/CvNpRz9Y4BzmcD4NvR0gsugp3isGlglkUVoBD15WhnQ==

Email authentication partial

SPF
v=spf1 include:us._netblocks.mimecast.com include:spf.protection.outlook.com include:_spf.psm.knowbe4.com ip4:64.251.180.56/29 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:frhs_it@frhssd.org; ruf=mailto:frhs_it@frhssd.org; fo=1;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current) wrong cert

Fireware web CA
from 2026-02-18 to 2036-03-17
Expires in 3588 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked over plain HTTP: http://frhssd.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • checked over plain HTTP
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
strict-transport-security
max-age=31536000

Linked from (1)