indexo.dev

johnstonlibrary.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-16 · ok HTTP/1.1 200 6022 ms crawled 2026-05-16

US · 208.90.191.81 · AS36489 IP Pathways, LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Johnston Public Library | Johnston, IA - Official Website
Description
24 hour virtual library plus online card catalog information on programs, services, youth activities and community resources.
Language
en

Technology

Server
Microsoft-IIS
Analytics
  • Google Tag Manager

Third-party hosts loaded (5)

  • unbound.syndetics.com×3
  • app-script.monsido.com×2
  • cdn.userway.org×1
  • docaccess.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
Network Solutions, LLC
Created
2000-12-13
Expires
2028-12-13 938 days left
Updated
2025-10-22
Name servers
  • ns89.worldnic.com
  • ns90.worldnic.com

DNS records live

NS
  • ns89.worldnic.com
  • ns90.worldnic.com
MX
  • 0 johnstonlibrary-com.mail.protection.outlook.com
TXT
Show 8 TXT records
  • google-site-verification=tGDI5jngHbhrfT5xAOacoYaFMB4g5lXQsgMZPROZE5k
  • duo_sso_verification=m0bEPADkd41pE31s0yIutAgvDV45RLnqOICIHY8NUKFtAMK6aFSANLNWQdelaW0b
  • MS=ms89685559
  • google-site-verification=jp5exOWdWuHwbXdsYLy6rHgu6HUSdX8na17CfDtPAKI
  • MS=ms85673263
  • MS=D23D276552BAC9E1D3F5870779050805B9E49C09
  • MS=ms16502566
  • google-site-verification=-5mbqOKO-waVm9vUXvFMWS3OmZLcKqLQLp1AJd7W3Vk

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

R12
from 2026-04-08 to 2026-07-07
Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://johnstonlibrary.com/

present
  • content-security-policy
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (10)

Linked from (1)