hermitagerd.co.uk

HTML metadata

Title: Iconic Pub & Restaurant in Hitchin | Hermitage Rd.
Description: Join us at one of the most iconic pubs and restaurants in Hitchin town centre serving exceptional food, coffee, oysters and drinks. Book today!
Language: en

Open Graph

url: https://www.hermitagerd.co.uk/
title: Iconic Pub & Restaurant in Hitchin | Hermitage Rd.
site name: Hermitage Rd
description: Join us at one of the most iconic pubs and restaurants in Hitchin town centre serving exceptional food, coffee, oysters and drinks. Book today!

Technology

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Fonts

Adobe Fonts

Third-party hosts loaded (4)

www.googletagmanager.com×2
consent.cookiebot.com×1
use.typekit.net×1
www.google.com×1

Social

Contact

Address: 20-21, Hermitage Rd, Hitchin, Hertfordshire, SG5 1BT

Registration

Registrar

Fasthosts Internet Ltd

Created

2011-07-09

Expires

2027-07-09 416 days left

Updated

2025-06-09

Name servers

ns1.bdm.microsoftonline.com.
ns2.bdm.microsoftonline.com.
ns3.bdm.microsoftonline.com.
ns4.bdm.microsoftonline.com.

DNS records live

NS

ns1.bdm.microsoftonline.com
ns2.bdm.microsoftonline.com
ns3.bdm.microsoftonline.com
ns4.bdm.microsoftonline.com

MX

0 hermitagerd-co-uk.mail.protection.outlook.com

TXT

Show 4 TXT records

MS=ms96445809
mscid=rqqFdWX4HWhSsCV/UgQ/T7VHTLRTE961WvcaBAUPMGuRXzSRmgkrT4SRo5zUVgoJqefPO3NvQciY6uaUv3q4yw==
ggaie10euhl0o92t5llr83m04f
cacibm4rra74nrfco9ukcovge4

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@ideasanvil.com, mailto:dmarc_agg@vali.email

policy: quarantine

DKIM

Show 4 DKIM selectors

selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCqgRz3UrFmOFuP38eNOkymqdXrzdO4UXu0k9LSlMBes5a1Zm0Yr+skC78s0Pg2Gf6Iqk9q2cWoOv7FQ1Hurj…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mR+vx30dhvpI/3a7PMw9BHSnWQWfmDThlSCkB7XPM/QWihe6/yJRmD7I7RiFH4BWc8Jde3u/OjW1uFpvj…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEjXKH6G9DGtERcPWW7fPx6hK0GUuEMJOuQSeKeZtoQYEIOIJhtw7+wQrmjVvnG3TZQEiiUFOrbds7Ta05…

selectors probed

Certificate (current)

R13

from 2026-04-20 to 2026-07-19

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.hermitagerd.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.opentable.co.uk events-widget.liveres.co.uk *.google.com *.google.co.uk *.gstatic.com *.googletagmanager.com *.doubleclick.net googleads.g.doubleclick.net *.facebook.com *.facebook.net connect.facebook.net *.clarity.ms www.clarity.ms player.vimeo.com f.vimeocdn.com *.vimeocdn.com use.typekit.net *.cookiebot.com consentcdn.cookiebot.com *.youtube.com *.ytimg.com *.googleapis.com cdnjs.cloudflare.com cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' use.typekit.net p.typekit.net *.googleapis.com fonts.googleapis.com; img-src 'self' data: blob: i.vimeocdn.com *.vimeocdn.com *.cookiebot.com *.google.com *.google.co.uk *.gstatic.com *.googletagmanager.com *.google-analytics.com *.googlesyndication.com *.googleadservices.com *.doubleclick.net *.facebook.com *.facebook.net *.youtube.com *.ytimg.com *.googleapis.com *.clarity.ms c.clarity.ms; frame-src 'self' https: *.vimeo.com *.youtube.com *.google.com *.facebook.com; con
strict-transport-security: max-age=2592000