jonoalderson.com

HTML metadata

Title

Jono Alderson - Independent technical SEO consultant

Description

I'm an award-winning, world-leading SEO expert. I help brands to compete on technical SEO, performance, and structured data. Hire me as a consultant.

Language

en-GB

Canonical

https://www.jonoalderson.com/

Feeds

RSS RSS

Open Graph

url: https://www.jonoalderson.com/
title: Jono Alderson
locale: en_GB
site name: Jono Alderson
description: I'm an award-winning, world-leading SEO expert. I help brands to compete on technical SEO, performance, and structured data. Hire me as a consultant.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Cloudflare Insights

Third-party hosts loaded (1)

static.cloudflareinsights.com×1

Social

Contact

Email

me@jonoalderson.com

Registration

Registrar

Cloudflare, Inc.

Created

2011-01-16

Expires

2027-01-16 241 days left

Updated

2025-12-17

Name servers

lola.ns.cloudflare.com
rick.ns.cloudflare.com

DNS records live

NS

lola.ns.cloudflare.com
rick.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=IJ__nXtGHqht-jhaRsE9yLUkxpgB2WrKmY8raofiO0A
google-site-verification=xaylxcmCpAJpxNk6nz3bYc1t0PR2BlGXBRYRFZG2bWI

Email authentication strong

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;fo=1

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApaUZpoKORn6298HU3tLVODsF4TBlOmZZUHEbVDo8l+rcGDVX2EdFEnvF5S+NedVnVXj6qZHjAZWBO0…

selectors probed

Certificate (current)

WE1

from 2026-04-05 to 2026-07-04

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.jonoalderson.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles

Header values

referrer-policy: origin-when-cross-origin
x-frame-options: DENY
permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://jonoalderson.com https://www.jonoalderson.com https://challenges.cloudflare.com https://static.cloudflareinsights.com; script-src-elem 'self' 'unsafe-inline' https://jonoalderson.com https://www.jonoalderson.com https://challenges.cloudflare.com https://static.cloudflareinsights.com; style-src 'self' 'unsafe-inline'; img-src 'self' https://secure.gravatar.com; font-src 'self' data:; connect-src 'self'; media-src 'self'; object-src 'none'; frame-src 'self' https://challenges.cloudflare.com https://speakerdeck.com https://www.youtube.com/; frame-ancestors 'self'; base-uri 'self'; form-action 'self'
strict-transport-security: max-age=31536000