harwoodarmsdallas.com

.com crawl

First seen 2026-04-23 · Last seen 2026-05-17 · ok HTTP/1.1 200 5926 ms crawled 2026-05-17

US · 151.101.1.75 · AS54113 Fastly, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Best Pub in Dallas | Harwood Arms
Description: Catch every moment of the FIFA World Cup at Harwood Arms—where the atmosphere is electric, the pints are flowing, and every match feels like the final. From early kickoffs to late-night showdowns, this is your home for world-class football in Dallas.
Language: en-US
Canonical: https://www.harwoodarmsdallas.com/

Open Graph

url: https://v3-harwoodarmsdallas.getbento.com/
title: Best Pub in Dallas | Harwood Arms
site name: Harwood Arms | British Restaurant in Dallas, TX
description: Catch every moment of the FIFA World Cup at Harwood Arms—where the atmosphere is electric, the pints are flowing, and every match feels like the final. From early kickoffs to late-night showdowns, this is your home for world-class football in Dallas.

Technology

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (12)

images.getbento.com×19
theme-assets.getbento.com×4
app-assets.getbento.com×3
www.googletagmanager.com×2
assets-cdn-refresh.getbento.com×1
cdnjs.cloudflare.com×1
fonts.googleapis.com×1
fonts.gstatic.com×1
media-cdn.getbento.com×1
widgets.resy.com×1
www.google.com×1
www.gstatic.com×1

Social

Contact

Phone

(214) 273-5151

Registration

Registrar

Wild West Domains, LLC

Created

2019-08-19

Expires

2026-06-18 28 days left

Updated

2024-03-15

Name servers

ns1.mediatemple.net
ns2.mediatemple.net

DNS records live

NS

ns1.mediatemple.net
ns2.mediatemple.net

MX

10 us-smtp-inbound-1.mimecast.com
20 us-smtp-inbound-2.mimecast.com

TXT

0ed1fe018a7a1314a349144c0aa8ef8bb763e3c12c

Verified for

Microsoft 365

Email authentication weak

SPF: v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-03-25 to 2026-06-23

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.harwoodarmsdallas.com/

present

strict-transport-security
content-security-policy
x-frame-options
cross-origin-opener-policy

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: default-src * blob: data: 'unsafe-inline' 'unsafe-eval'; script-src 'self' * https://cdn.us.heap-api.com https://heapanalytics.com https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval'; script-src-elem * https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval'; img-src 'self' * https://heapanalytics.com https://viewer.threshold360.com blob: data:; style-src 'self' * https://heapanalytics.com https://viewer.threshold360.com 'unsafe-inline' 'unsafe-eval' blob:; connect-src 'self' * https://c.us.heap-api.com https://heapanalytics.com https://viewer.threshold360.com wss://viewer.threshold360.com blob:; font-src 'self' * https://heapanalytics.com https://viewer.threshold360.com data:; frame-src 'self' * https://viewer.threshold360.com; worker-src * blob:; media-src * blob: data:; frame-ancestors 'self';
strict-transport-security: max-age=2592000; includeSubDomains
cross-origin-opener-policy: same-origin