his-usa.com
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- ajax.googleapis.com×2
- fonts.googleapis.com×1
- www.google.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- Network Solutions, LLC
- Created
- 1996-07-30
- Expires
- 2027-07-29 435 days left
- Updated
- 2022-04-25
- Name servers
-
- dns1.easydns.com
- dns2.easydns.net
- dns3.easydns.org
DNS records live
- NS
-
- dns1.easydns.com
- dns2.easydns.net
- dns3.easydns.org
- MX
-
- 5 mail.his-america.com
Email authentication strong
- SPF
-
v=spf1 mx ip4:206.132.163.66/32 ip4:206.132.162.250/32 include:_spf.google.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:admin@his-usa.com; ruf=mailto:admin@his-usa.com; fo=1policy: quarantine - DKIM
-
- dkim:
v=DKIM1; k=rsa; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3X6OsvqtLU8OLKc3AWj6OZ6NwcvGKIhJPGdMaXOlKf09AkQcwpnQuo4WHrnS/zEG8F0aiQ5tBq…
selectors probed - dkim:
Certificate (current)
Sectigo Public Server Authentication CA EV R36
Expires in 175 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
sameorigin, SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self';, default-src 'self' http: https: data: blob: 'unsafe-inline'- strict-transport-security
max-age=31536000; includeSubDomains; preload, max-age=31536000; includeSubDomains; preload
Links to (9)
- facebook.com×1
- his-j.com×1
- hisgo.com×1
- instagram.com×1
- line.me×1
- pxf.io×1
- townwifi.com×1
- twitter.com×1
- youtube.com×1