indexo.dev

gordonandco.co.uk

.uk crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 1461 ms crawled 2026-06-01

GB · 176.74.17.199 · AS41000 Freethought Internet Limited

Reputation 100/100

Classifying

HTML metadata

Title
Performing Arts Insurance Specialists - Gordon & Co.
Description
Discover Gordon & Co. Insurance Brokers. A family run company of Commercial and performing arts insurance specialists.
Language
en-GB
Generator
WordPress 7.0
Canonical
https://www.gordonandco.co.uk

Open Graph

url
https://www.gordonandco.co.uk
title
Performing Arts Insurance Specialists - Gordon & Co.
locale
en_GB
site name
Gordon & Co.
description
Discover Gordon & Co. Insurance Brokers. A family run company of Commercial and performing arts insurance specialists.

Technology

Server
nginx
CMS
WordPress 7.0
jQuery
3.7.1
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (7)
  • fonts.googleapis.com×2
  • www.google.com×2
  • cdn-cookieyes.com×1
  • gmpg.org×1
  • widgets.tree-nation.com×1
  • www.googletagmanager.com×1
  • www.securitymetrics.com×1

Contact

Email
Phone
Address
Israel, Gordon & Co. Ltd.2 Sekforde Court,217 St John Street,London, EC1V 4LY.

DNS records live

NS
  • ns0.phase8.net
  • ns1.phase8.net
  • ns2.phase8.net
MX
  • 10 eu-smtp-inbound-1.mimecast.com
  • 10 eu-smtp-inbound-2.mimecast.com
TXT
Show 5 TXT records
  • da6vera4i46f0c9hmp05j117rm
  • obmapmndasn1oqr4gkh34iqulc
  • fhnr7elgppkicnl7nl1msftkjm
  • 0ed1fe018a6cb764336e0b41c6b8e236611a4d20cd
  • 6a21cppgd0v2ijpc1p8pjcd2oa
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:eu._netblocks.mimecast.com include:spf.protection.outlook.com ip4:176.74.17.199 ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine
policy: quarantine
DKIM
  • dkim: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCUzkGXOVuG1srC/YyIbyGSYs8XU+xYRGwslBqecrrjfJNjFFbPISZusjJyDXFZ6udCqX3/wC9Nidf5dQyQ/UhRl+pA2…
selectors probed

Certificate (current)

E8
from 2026-04-06 to 2026-07-05
Expires in 30 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.gordonandco.co.uk/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-eval' www.gstatic.com https://js.stripe.com https://www.googletagmanager.com/ https://cdn-cookieyes.com/ https://www.google.com https://widgets.tree-nation.com/ 'unsafe-inline';frame-ancestors 'self' https://www.google.com;worker-src 'self' blob:;

Links to (2)

Linked from (1)