haystravel.co.uk

.uk crawl

First seen 2026-04-13 · Last seen 2026-05-06 · ok HTTP/1.1 200 717 ms crawled 2026-05-06

GB · 20.90.134.36 · AS8075 Microsoft Corporation

Reputation 92/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title: Secure Holidays 2026 / 2027 | UK's Largest Independent Travel Agent - Hays Travel - Hays Travel
Description: As the UK's largest independent travel agent, Hays Travel offers unparallelled holiday choice and award-winning service across nearly 500 high street branches, personal travel consultants and online
Language: en-GB
Canonical: https://www.haystravel.co.uk/

Technology

CDN: Azure Front Door
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (7)

widget-v3.holidaywebtech.co.uk×4
widget.trustpilot.com×3
maps.googleapis.com×2
www.googletagmanager.com×2
maps.gstatic.com×1
rum-static.pingdom.net×1
www.google.com×1

Social

Contact

Phone

08004084048

Registration

Registrar

123-Reg Limited t/a 123-reg

Created

1999-06-03

Expires

2027-06-03 378 days left

Updated

2025-05-15

Name servers

ns45.domaincontrol.com.
ns46.domaincontrol.com.

DNS records live

NS

ns45.domaincontrol.com
ns46.domaincontrol.com

MX

10 d236094.b.ess.uk.barracudanetworks.com
8 d236094.a.ess.uk.barracudanetworks.com

TXT

22dbta4uugqq9dp6n913clv807
MS=77AC7F4F8873C51238E2BA678B6664BB333BEEBA

Verified for

Apple
Brevo
Google
Meta
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:159.183.164.41/32 ip4:159.183.229.60/32 ip4:82.109.164.144/28 ip4:212.135.6.8/29 ip4:77.107.112.234/29 ip4:167.98.152.192/27 ip4:193.120.142.0/23 include:spf.traveltek.net include:spf.protection.outlook.com include:spf2.accessacloud.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:rua+haystravel.co.uk@dmarc.barracudanetworks.com; ruf=mailto:ruf+haystravel.co.uk@dmarc.barracudanetworks.com

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; n=2048; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/xr5RRHhtEMK6vrSF2vMY4wkQc07y2dSL6gxSudMynJEQomqDI64bf3hPY4KFsf1yQ9eaC…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2OGCgF7RlCyJYQMfV2EloNnpSyOLwJf6U6l9X60/TYvKLfH6/OzZycArUgOx5gnI9zrYy9YDae/XMoZr25…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrxoGq8O5vnkRYWA6uVzmwRIsiWPuYeid3ToNkWXcQP4HhOX7BnQ1Q2UaqrJreREG2dGXJqLMi/SUcrvIM…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-07-02 to 2026-07-02

Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.haystravel.co.uk/

present

x-frame-options
x-content-type-options

findings

missing HSTS
missing Content Security Policy
weak frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff

Links to (10)

Linked from (1)

runaltontowers.com×2