hoyatoric.com
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- ajax.googleapis.com×1
- www.googletagmanager.com×1
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2010-08-06
- Expires
- 2026-08-06 77 days left
- Updated
- 2025-08-07
- Name servers
-
- ns03.domaincontrol.com
- ns04.domaincontrol.com
DNS records live
- NS
-
- ns03.domaincontrol.com
- ns04.domaincontrol.com
- MX
-
- 0 smtp.secureserver.net
- 10 mailstore1.secureserver.net
- TXT
-
eteluhrtdfoi07uadh5lsc89dcrqasrgpsap95mfjo337cjsvvd
Email authentication strong
- SPF
-
v=spf1 -allstrict (-all) - DMARC
-
v=DMARC1; p=reject;policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
Go Daddy Secure Certificate Authority - G2
Expires in 182 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
Header values
- referrer-policy
strict-origin-when-cross-origin- permissions-policy
fullscreen=(self https://www.hoyatoric.com)- x-content-type-options
nosniff- content-security-policy
default-src 'none';font-src 'self';base-uri 'self';script-src 'self' https://www.hoyatoric.com https://google.com https://*.googleapis.com https://*.googletagmanager.com https://*.google-analytics.com 'unsafe-inline'; frame-src 'self' https://www.hoyatoric.com; frame-ancestors 'self' https://www.hoyatoric.com;style-src 'self' 'unsafe-inline'; img-src 'self' https://*.google-analytics.com https://*.googletagmanager.com data:; connect-src 'self' https://*.google-analytics.com https://*.analytics.google.com https://analytics.google.com https://*.googletagmanager.com;- strict-transport-security
max-age=31536000; includeSubDomains;preload