indexo.dev

gfs.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-17 · ok HTTP/1.1 200 3454 ms crawled 2026-05-06

US · 23.185.0.2 · AS54113 Fastly, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Gordon Food Service | Food Distributor for Restaurants, Hospitals, Schools
Description
Gordon Food Service is a prominent family-owned food distributor in Grand Rapids, MI, serving restaurants, healthcare, and schools.
Language
en-US
Generator
WordPress 6.9.4
Canonical
https://gfs.com/en-us/
Translations
  • en
  • en-us
  • es
  • es-us
Feeds

Open Graph

url
https://gfs.com/en-us/
title
Home
locale
en_US
site name
Gordon Food Service
description
Gordon Food Service is a prominent family-owned food distributor in Grand Rapids, MI, serving restaurants, healthcare, and schools.

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts

Third-party hosts loaded (4)

  • www.google.com×2
  • gmpg.org×1
  • use.typekit.net×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
MarkMonitor Inc.
Created
1994-02-28
Expires
2027-03-01 286 days left
Updated
2026-01-28
Name servers
  • ha1.markmonitor.zone
  • ha2.markmonitor.zone
  • ha3.markmonitor.zone
  • ha4.markmonitor.zone

DNS records live

NS
  • ha1.markmonitor.zone
  • ha2.markmonitor.zone
  • ha3.markmonitor.zone
  • ha4.markmonitor.zone
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 24 TXT records
  • TVC-15J-KN4
  • _globalsign-domain-verification=aPSFamDsJ0OViaykmvCZx7uMFCDVTktkA3wVfybUXR
  • asv=81333f6ddd4df1cebafc05f0372ef848
  • _globalsign-domain-verification=nx5U56FiDUqhsckpguh1BWVo8oJVRsFtwCfGxdBN4e
  • MS=96459826C2207B4819345C1E0F7E459344467CF7
  • fastly-domain-delegation-TlesdrkagyXHDwfr-20200609
  • _t0xhgn130ppxibraim18ito2sxt8i3u
  • google-site-verification=YZlCLbwGcH6VB1DaGpSP96w3IMvteVS8x5gm_RXS7vc
  • google-site-verification=HgQukENOyHOz0I3RyztBfySAhqgey5qAX-48rP94ryQ
  • apple-domain-verification=GRIr6tlTejmws2c3
  • knowbe4-site-verification=641daa96a3ea5d71ba1dc2c60496ea8e
  • atlassian-sending-domain-verification=f9c16039-c77a-49a4-8904-24050e7bad18
  • dtm-domain-verification=ilN-CqKKF1JfJawhZMTi9eQBcTVZFB3hpjy04AoVr-E
  • Dynatrace-site-verification=693638b8-dcd6-4ffb-bb07-35efa6702254__vlercd4g38to2m7hlhq4pe04dr
  • uyplnuqdrn
  • _globalsign-domain-verification=8RGDqabekFZhhJEqdJHbH3_LLNY1cKoIfqO0g5e0Vy
  • adobe-idp-site-verification=c2c3c9beca3d427d83fcfed872bda7ee1113fe26c79ce9d64b9e1b0ed81c0863
  • atlassian-domain-verification=M1AxxQTCd5QGPgtDbPTCIfLYj1YxwnrtqlXVl90cWORumDU8RMdM8QQOSW8Do0WG
  • _globalsign-domain-verification=fglY8fW9FHwF88bTrkylG5-G165KrJe3yCIjKnAR9J
  • facebook-domain-verification=fyte1x55kl6vah1njt1731ghtpbrrc
  • google-site-verification=H39FZ_6X21D2ULTQtDCdat4n9GiP7CkPcJbsmSAsQmk
  • google-site-verification=juoUrKcJkIFS2irs-6QT-YuYseO0k9H8y3L75K-vWF0
  • globalsign-domain-verification=273eFvKCuCXR3P_oKS85yffiPwBPz0qc1fEV1-x8Aq
  • _globalsign-domain-verification=EjPxRpSNAI2an12JHUpXeiMSoted2BhX6p_ljbqWlU

Email authentication strong

SPF
v=spf1 include:spf1.gfs.ca include:spf2.gfs.ca include:spf3.gfs.ca include:spf4.gfs.ca include:oktamail.gfs.com include:wiamnpmail.gfs.com include:wiammail.gfs.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc@gfs.com; ruf=mailto:5640eaf84b@rep.dmarcanalyzer.com; fo=0:1:d:s
policy: quarantine
DKIM
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgB2Do/qZM1TiMpD1bYhC9P9XeQygc/KCcYehCSdupe5EHf/xbcde9y/hM3CD4/bfWAsztDagcvSSds…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA10onRtcr4fuQkEGZIv4Z4PtVzt6YMERqtRmQLt/Zk4xDwtkQp1vbkaeJx2mPi578GaZILVTE90azyu3tgF…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMqoajmV2q5kI7/WoBoEo+Q1zCq8CFrtAC6a56YVYKM8ZapuSvOyk1voB0jpW7zzEbXMNO5G9vbmNtO2E2…
selectors probed

Certificate (current)

R12
from 2026-04-12 to 2026-07-11
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://gfs.com/en-us/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
fullscreen=(self "https://gfs.com" "https://dev.gfs.com" "https://test.gfs.com"), accelerometer=self, autoplay=(), geolocation=*, camera=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), publickey-credentials-get=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://*.paradox.ai wss://ws.stg.paradox.ai wss://ws.olivia.paradox.ai; connect-src 'self' blob: data: *.google.com https://cdn.ketchjs.com https://ssl.google-analytics.com https://googleads.g.doubleclick.net https://*.googleapis.com https://*.gstatic.com https://bam.nr-data.net https://www.google-analytics.com stats.g.doubleclick.net https://global.ketchcdn.com https://td.doubleclick.net https://*.paradox.ai https://d25zu39ynyitwy.cloudfront.net https://dokumfe7mps0i.cloudfront.net wss://ws.stg.paradox.ai wss://ws.olivia.paradox.ai *.traitify.com wss://ws.paradox.ai; font-src 'self' 'unsafe-inline' data: https://*.typekit.net https://fonts.gstatic.com https://d25zu39ynyitwy.cloudfront.net https://dokumfe7mps0i.cloudfront.net; frame-ancestors 'self' https://www.google.com https://d25zu39ynyitwy.cloudfront.net; frame-src 'self' *.googletagmanager.com https://www.googletagmanager.com/ *.google.com https://*.gordonnow.gfs.com youtube.com www.youtube.com https://td.dou
strict-transport-security
max-age=31622400; includeSubDomains; preload

Links to (5)

Linked from (11)