indexo.dev

joshpallottafund.org

.org crawl

First seen 2026-05-31 · Last seen 2026-06-02 · ok HTTP/1.1 200 313 ms crawled 2026-05-31

DE · 217.160.0.145 · AS8560 IONOS SE

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Josh Pallotta Fund
Description
Josh’s House VT is a wellness and recreational center that include traditional, complementary and alternative healing modalities such as massage, Reiki, yoga, integrative health and wellness coaching, healing touch, acupuncture and more.
Language
en
Canonical
https://www.joshpallottafund.org/
Feeds

Open Graph

url
https://www.joshpallottafund.org/
title
Josh Pallotta Fund
description
Josh’s House VT is a wellness and recreational center that include traditional, complementary and alternative healing modalities such as massage, Reiki, yoga, integrative health and wellness coaching, healing touch, acupuncture and more.

Technology

Server
nginx
jQuery
2.2.4 known XSS (<3.5)

Third-party hosts loaded (4)

  • le-cdn.website-editor.net×23
  • cdn.website-editor.net×5
  • static-cdn.website-editor.net×3
  • irt-cdn.multiscreensite.com×2

Social

Registration

Registrar
IONOS SE
Created
2016-11-12
Expires
2026-11-12 160 days left
Updated
2025-12-27
Name servers
  • ns1061.ui-dns.org
  • ns1097.ui-dns.de
  • ns1121.ui-dns.com
  • ns1126.ui-dns.biz

DNS records live

NS
  • ns1061.ui-dns.org
  • ns1097.ui-dns.de
  • ns1121.ui-dns.com
  • ns1126.ui-dns.biz
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com

Email authentication weak

SPF
v=spf1 include:_spf-us.ionos.com ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-11-01 to 2026-11-16
Expires in 164 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://joshpallottafund.org/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
frame-ancestors https://*.ionos.com https://*.ionos.at https://*.ionos.co.uk https://*.ionos.de https://*.ionos.es https://*.ionos.fr https://*.ionos.it https://*.ionos.ca https://*.ionos.mx https://*.ionos.us https://*.website-editor.net https://*.mywebsite-editor.com www.joshpallottafund.org
strict-transport-security
max-age=15768000; preload

Links to (5)

Linked from (1)