indexo.dev

hrny.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 2525 ms crawled 2026-05-18

US · 74.122.171.100 · AS53332 C2Hosting, LLC

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
HRNY - Wanna flirt? Register for free now!
Description
Join millions of members worldwide! Hrny is the best open-minded dating site to find singles and other curious humans where the main focus is quality and customer support. The best part is it is FREE to register!
Language
en
Canonical
https://www.hrny.com

Technology

Server
nginx
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • cachemd.cdnhost2000xl.com×22
  • webmasters.hugetraffic.com×1
  • www.googletagmanager.com×1

Contact

Email
Phone

Registration

Registrar
GoDaddy.com, LLC
Created
2002-07-13
Expires
2030-07-13 1514 days left
Updated
2025-07-14
Name servers
  • ns0.reflected.net
  • ns1.reflected.net

DNS records live

NS
  • ns0.reflected.net
  • ns1.reflected.net
MX
  • 10 mail.answer-pro.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 include:mail.zendesk.com mx -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:re+5643b5cc14bf@inbound.dmarcdigests.com
policy: quarantine
DKIM
  • mail: v=DKIM1; h=sha256; k=rsa; s=email; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYuVmQY/OjDV01VEBLcwbbOSp+rjVzomPvTY5AWoS3qCiTxasTaI0e5LKvm…
selectors probed

Certificate (current)

E8
from 2026-03-19 to 2026-06-17
Expires in 27 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.hrny.com/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
upgrade-insecure-requests; default-src *; media-src * data: blob: rtmp: mediastream:; child-src * data: blob: gsa: webviewprogressproxy:; img-src * data: blob: android-webview-video-poster:; script-src * 'unsafe-inline' 'unsafe-eval' data: opera:; frame-src * 'unsafe-inline' data: gsa: webviewprogressproxy:; style-src * 'unsafe-inline' data:; connect-src * 'unsafe-inline' ws: wss:; font-src * data:; object-src *; report-uri /members/util/log_csp/

Linked from (5)