haveyoursaywest.co.uk
haveyoursaywest.co.uk
HTML metadata
Technology
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- cdn.lightwidget.com×1
- fonts.googleapis.com×1
- maps.googleapis.com×1
- www.google.com×1
Registration
- Registrar
- Squarespace Domains LLC t/a SQUARESPACE DOMAINS
- Created
- 2023-06-20
- Expires
- 2026-06-20 29 days left
- Updated
- 2025-06-05
- Name servers
-
- ns-cloud-a1.googledomains.com.
- ns-cloud-a2.googledomains.com.
- ns-cloud-a3.googledomains.com.
- ns-cloud-a4.googledomains.com.
DNS records live
- NS
-
- ns-cloud-a1.googledomains.com
- ns-cloud-a2.googledomains.com
- ns-cloud-a3.googledomains.com
- ns-cloud-a4.googledomains.com
- MX
-
- 10 mail.participatr.limited
Email authentication weak
- SPF
-
v=spf1 a:server.participatr.limited ~allsoftfail (~all) - DMARC
- not published
- DKIM
-
- mail:
v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/wQIL2a4svIL8F1pXonZ48+3tpECimavRVAEGrfvJQAy7dNizfAtoyMbc57NTCcUw2g…
selectors probed - mail:
Certificate (current)
E7
Expires in 19 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
no-referrer- x-content-type-options
nosniff- content-security-policy
default-src 'self' img-src * font-src * style-src 'self' 'unsafe-inline' *.google.com *.curator.io *.lightwidget.com *.googleapis.com *.gstatic.com *.jsdelivr.net *.tiny.cloud *.tinymce.com data:- strict-transport-security
max-age=63072000; includeSubdomains;