hermitagelearninganddevelopment.co.uk

HTML metadata

Technology

Server

nginx

CMS

WordPress

jQuery

3.7.1

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (3)

• fonts.googleapis.com×3
• maxcdn.bootstrapcdn.com×2
• www.googletagmanager.com×2

Social

• linkedin

Contact

Email

• sandra@hermitagelearninganddevelopment.co.uk

Phone

• +35679656665

DNS records live

NS

• ns1.siteground.net
• ns2.siteground.net

MX

• 10 mx10.antispam.mailspamprotection.com
• 20 mx20.antispam.mailspamprotection.com
• 30 mx30.antispam.mailspamprotection.com

Email authentication partial

SPF

v=spf1 +a +mx +a:c63935.sgvps.net include:hermitagelearninganddevelopment.co.uk.spf.auto.dnssmarthost.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; aspf=r; adkim=r;

policy: none (monitoring only)

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+WyyFLXmtChoHQw5npadUim/8ryXk29R1sUK7oK68m/NKx/zI1Yslfl3n4XRSBDcrKojRWDCEldmO…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.hermitagelearninganddevelopment.co.uk/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• worthschool.org.uk×1
• weebly.com×1
• twobluetoucans.co.uk×1
• millstreamhotel.com×1
• martinco.com×1
• linkedin.com×1
• brownshipley.com×1

Linked from (1)

• twobluetoucans.co.uk×1