indexo.dev

jostens.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2994 ms crawled 2026-05-18

US · 192.189.112.141 · AS40238 Jostens

Reputation 75/100 wrong cert

Classifying

HTML metadata

Title
Jostens | Celebrate & Commemorate Life's Big Milestones
Description
Jostens iconic commemoratives — like yearbooks, custom class rings and letter jackets — have been keeping school pride and traditions alive for over 125 years.
Language
en
Canonical
//www.jostens.com/

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Cloudflare Insights
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (5)

  • cdn.cookielaw.org×3
  • www.googletagmanager.com×2
  • www.youtube.com×2
  • photorankstatics-a.akamaihd.net×1
  • static.cloudflareinsights.com×1

Contact

Address
st var prochampAffiliateIds = ["14539

Registration

Registrar
CSC Corporate Domains, Inc.
Created
1994-06-25
Expires
2026-06-24 35 days left
Updated
2025-06-20
Name servers
  • udns1.cscdns.net
  • udns2.cscdns.uk

DNS records live

NS
  • udns1.cscdns.net
  • udns2.cscdns.uk
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
TXT
Show 14 TXT records
  • logmein-verification-code=QcEqOWWBKXi5luTnNwYdMN2cn
  • _6rqf8xkjfjgw012m88a867820s359e9
  • google-site-verification=lXYtIEv-glQP2AjIsk5_VSkC3fyNOTlR2UAkBPRgrNM
  • uLISV41ZDLdpF2OpwZyWDXpgRP7AuWTgjT15JMYdjl7rg7NWSpQXlVN4Hcywtkwg/ZXcBDSL4Bxv2YPcs/f1rw==
  • cloudflare_dashboard_sso=7c1f2e33bfaa924206566d17487c07e1
  • SFMC-jHdJwO14xJBmOu_2Bm0TTCILKoi566wMOBu14Bu5
  • 00D30000000oXOw=1TBPo000000012X
  • beautifulai-site-verification=57034b4c-57fe-4c77-90fe-b5130197189b
  • atlassian-domain-verification=HPvXpZ/cd3jfsR9959WlaB46DHbcdQMuCl3H5p8ma/EXyHByOI0FtcVQoQvZOc8e
  • google-site-verification=0XCA2V5rmpS3f7CsciEnfZ1YdvUFcogK1u__h97UU1Q
  • _3dmxx8yvxlo3egaa8dqg3uecybrrszu
  • apple-domain-verification=R7aBtzGsUEDcyroa
  • _kwt54fjmr9aj3vevegmuj65nsop1zim
  • UbRpeyv+y0AFpozpveM/ESqNx3w8RkeNufUVsVXhOmVkJhMm0UbaiK0JtLgtCDai9kJyweYIpbRkQv3zypw6Uw==

Email authentication strong

SPF
v=spf1 mx include:us._netblocks.mimecast.com include:_spf.salesforce.com include:cust-spf.exacttarget.com include:spf.protection.outlook.com include:mktomail.com include:sendgrid.net ip4:192.189.112.14 ip4:192.189.112.15 ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; rua=mailto:5455e7f70244938@rep.dmarcanalyzer.com,mailto:dmarc_agg@dmarc.everest.email; ruf=mailto:5455e7f70244938@for.dmarcanalyzer.com,mailto:dmarc_fr@dmarc.everest.email; fo=1;
policy: reject (enforced)
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5w2EBYMhnGYbM49lGil+ae5TKU3Q7YhUaJFTLByBkyvN9Vkl3qSqaGi5rmhzxFESOeOPJt1a6C3dXTyqKQ…
selectors probed

Certificate (current) wrong cert

DigiCert Global G2 TLS RSA SHA256 2020 CA1
from 2025-08-04 to 2026-08-22
Expires in 94 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.jostens.com/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src f5 'self' 'unsafe-eval' 'unsafe-inline' blob: data: wss://*.atl.five9.com wss://app-atl.five9.com wss://*.five9.com *.afterpay.com *.afterpay-beta.com *.akamaihd.net *.amazonaws.com *.attentivemobile.com *.attn.tv *.clarity.ms *.cvent.com *.cookielaw.org *.doubleclick.net *.issuu.com *.jostens.com *.evgnet.com *.five9.com *.paypal.com *.paywithmybank.com *.onetrust.com *.photorank.me *.pinterest.com *.salesforce.com *.salesforceliveagent.com faro-collector-prod-us-central-0.grafana.net *.trustly.com *.trustly.one analytics.tiktok.com bat.bing.com calendly.com fonts.gstatic.com fonts.googleapis.com insight.adsrvr.org jostensinc.us-5.evergage.com paywithmybank.com trustly.one player.vimeo.com *.snapchat.com sc-static.net js.squarecdn.com js-sandbox.squarecdn.com www.paypalobjects.com www.facebook.com connect.facebook.net www.google-analytics.com analytics.google.com www.google.com www.googleadservices.com www.googletagmanager.com www.shopgradframes.com www.youtube.com www.uni
strict-transport-security
max-age=31536000;includeSubDomains
content-security-policy-report-only
default-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=UIw_3XsbYa.mi_LlMZqxghbEDToldkqKPn8gy9dw3xk-1779136591.288283-1.0.1.1-E5yWM6v_Ip9msyQTLf8piEffAuG4kx1DRVIfx2Oa9GI.Eia7qc._55MZt2Y__85LlNgYIq5F1O3cnYkrrpm3V2raU4FNcvh7KvZyltbOIoqMOzMbIpoS09z2NfbjWA5_7Ad3.GIb0eRfVFs28kyy2D6RmI.9_nbrjfHlssoObnEBpCVEBoRoqx4Od_uiMU.SNkEIPCRijDPhtwEj4JziTQ; report-to cf-xvfeedmtoajfzttz

Links to (8)

Linked from (36)