geha.com

HTML metadata

Title: Federal Employees Health Benefits Plans | GEHA
Description: GEHA Federal Employees Health Benefits Plans | Discover GEHA's comprehensive health benefits plans tailored for federal employees and retirees. Choose affordable and reliable coverage with GEHA.
Language: en
Canonical: https://www.geha.com/

Open Graph

url: https://www.geha.com/
title: Federal Employees Health Benefits Plans
description: GEHA has served 2 million federal employees, military retirees and their families for 87 years. We deliver valuable benefits that make a difference in communities nationwide.

Technology

CDN: Akamai

Analytics

Google Tag Manager

Third-party hosts loaded (2)

kit.fontawesome.com×2
www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar

Network Solutions, LLC

Created

1996-06-11

Expires

2029-06-10 1118 days left

Updated

2024-04-11

Name servers

a1-229.akam.net
a13-64.akam.net
a14-65.akam.net
a20-64.akam.net
a3-67.akam.net
a6-66.akam.net

DNS records live

NS

a1-229.akam.net
a13-64.akam.net
a14-65.akam.net
a20-64.akam.net
a3-67.akam.net
a6-66.akam.net

MX

10 mxa-00132401.gslb.pphosted.com
10 mxb-00132401.gslb.pphosted.com

TXT

Show 16 TXT records

adobe-idp-site-verification=e79a4a12-e1d6-44bf-88b5-1890e5b65737
google-site-verification=ozIWZ-PthrjveZRVcqyHFq_wye2gUolRsOszUIgtKMU
smartsheet-site-validation=UZaAtRbaMg4KttIPH8hWD635erYlz7mg
rxrWH/CQtuzAxqNfu7JfsLgDAe+Dnar8uwz1dIZ2h6ZcdZGAsv3H3mU35fiXl4+DbqG4QzbgGn1VtivFHC+5MQ==
e79a4a12-e1d6-44bf-88b5-1890e5b65737
onetrust-domain-verification=62da128e40d240639d5199e6a4101229
logmein-verification-code=I9UASxQ6Q3fsqva6L69b9LhXi
MS=ms38428732
logmein-verification-code=YwvsXYpX0NAANZIDcr1xiB8hp
google-site-verification=_z_l76qnXYUC9XnUhwchKG24wtgvpjDbCwS4Gb66Xv4
ZsfLVQl0gmhj7qMA
onetrust-domain-verification=142dac16491d4a40b455eba078e64be5
miro-verification=fc5eb85139e15e1c54cf230c8cf014d985c3d6da
adobe-idp-site-verification=ebad2cb5-b99a-46a2-9e62-34054c3c089d
MS=ms81693449
ms-domain-verification=18df97fe-6326-49a3-9b38-a8b4c48b1f5e

Email authentication strong

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com

policy: reject (enforced)

DKIM

k1: k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1v+Lfe2KvbsFQ2mHtSApi29eSQNQVBGPWo7S0R860gp5aya0fSApjW46lFm54j6Vzjy8pDA+mwuMeAyyHV/Xval/…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvRyFha8+FaChQ74/9dFX0iCI2haXD3JVyZ/QukFvmQ3KwkAM/ftcHRIcROlOMUmBs8j7XAJkCKDoLrjzx…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr34iuUwh4PgVMn84OHCkJTUvHlKLvCGC/WFMfvmuBQZAaL7VFkEGezg55PfKx8SKLyBHAFk0RDnNOF6wmJ…

selectors probed

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1

from 2025-08-26 to 2026-08-26

Expires in 99 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://geha.com/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing Content Security Policy
weak content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: 'nosniff'
strict-transport-security: max-age=15768000 ; includeSubDomains
content-security-policy-report-only: script-src 'self' 'nonce-zTtaZQHL+6WGp3a7pdeLAGkUTSs=' 'strict-dynamic' 'unsafe-eval'; object-src 'none';