info4pi.org

.org crawl

First seen 2026-05-25 · Last seen 2026-06-01 · ok HTTP/1.1 200 3385 ms crawled 2026-05-29

US · 216.150.16.1 · AS16509 Amazon.com, Inc.

Reputation 86/100 spf without fallback dmarc monitor-only

Classifying

HTML metadata

Title: Home / The Jeffrey Modell Foundation
Description: The Jeffrey Modell Foundation provides support, research, and resources for patients living with Primary Immunodeficiency worldwide through expert networks, educational materials, and advocacy programs.
Language: en
Canonical: https://info4pi.org/

Open Graph

url: https://info4pi.org/
title: Home / The Jeffrey Modell Foundation
locale: en_US
site name: The Jeffrey Modell Foundation
description: The Jeffrey Modell Foundation provides support, research, and resources for patients living with Primary Immunodeficiency worldwide through expert networks, educational materials, and advocacy programs.

Technology

CDN: Vercel
CMS: Next.js

Social

Registration

Registrar

Network Solutions, LLC

Created

2002-11-15

Expires

2026-11-15 166 days left

Updated

2023-09-21

Name servers

hank.ns.cloudflare.com
ollie.ns.cloudflare.com

DNS records live

NS

hank.ns.cloudflare.com
ollie.ns.cloudflare.com

MX

10 mx001.netsol.xion.oxcs.net
10 mx002.netsol.xion.oxcs.net
10 mx003.netsol.xion.oxcs.net
10 mx004.netsol.xion.oxcs.net

TXT

v=spf1include:spf.improvmx.com-all

Verified for

Google

Email authentication weak

SPF: v=spf1include:spf.improvmx.com-all
missing all
DMARC: v=DMARC1; p=none; rua=mailto:anthony@anthonyshafto.me
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-04-28 to 2026-07-27

Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.info4pi.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: camera=(), microphone=(), geolocation=(self "https://app.nocodemapapp.com")
x-content-type-options: nosniff
content-security-policy: base-uri 'self'; child-src 'self'; font-src 'self' data: https://fonts.gstatic.com; form-action 'self' *.info4pi.org; frame-ancestors 'none'; frame-src 'self' https://bid.g.doubleclick.net https://www.youtube.com https://app.nocodemapapp.com; img-src 'self' data: blob: *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.g.doubleclick.net *.google.com https://ssl.gstatic.com https://www.gstatic.com https://googleads.g.doubleclick.net https://ade.googlesyndication.com https://res.cloudinary.com *.cdninstagram.com *.cloudinary.com *.supabase.co *.supabase.io; manifest-src 'self'; media-src 'self' *.cdninstagram.com *.supabase.co *.supabase.io; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.googletagmanager.com *.google-analytics.com *.googleadservices.com https://googleads.g.doubleclick.net https://tagmanager.google.com https://www.youtube.com https://va.vercel-scripts.com; style-src 'self' 'unsafe-inline' https://tagmanage
strict-transport-security: max-age=63072000; includeSubDomains; preload