indexo.dev

justbooks.co.uk

.uk crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2265 ms crawled 2026-05-19

US · 3.164.206.111 · AS16509 Amazon.com, Inc.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
JustBooks.co.uk: New & Used Books, Rare Books, Textbooks
Description
Find nearly any book: new, used, rare and textbooks. Get the best deal by comparing prices from over 100,000 booksellers.
Language
EN
Canonical
https://justbooks.co.uk/

Technology

CDN
Amazon CloudFront
CMS
Next.js

Registration

Registrar
Nom-IQ Limited t/a Com Laude
Created
1997-12-11
Expires
2026-12-11 204 days left
Updated
2025-12-06
Name servers
  • ns-100.awsdns-12.com.
  • ns-1497.awsdns-59.org.
  • ns-1892.awsdns-44.co.uk.
  • ns-848.awsdns-42.net.

DNS records live

NS
  • ns-100.awsdns-12.com
  • ns-1497.awsdns-59.org
  • ns-1892.awsdns-44.co.uk
  • ns-848.awsdns-42.net
MX
  • 10 amazon-smtp.amazon.com
Verified for
  • Google

Email authentication strong

SPF
v=spf1 include:spf1.amazon.com include:spf2.amazon.com include:amazonses.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:report@dmarc.amazon.com; ruf=mailto:report@dmarc.amazon.com
policy: reject (enforced)
DKIM
Show 12 DKIM selectors
  • default: v=DKIM1; p=
  • google: v=DKIM1; p=
  • selector1: v=DKIM1; p=
  • selector2: v=DKIM1; p=
  • k1: v=DKIM1; p=
  • k2: v=DKIM1; p=
  • mail: v=DKIM1; p=
  • dkim: v=DKIM1; p=
  • s1: v=DKIM1; p=
  • s2: v=DKIM1; p=
  • mxvault: v=DKIM1; p=
  • smtpapi: v=DKIM1; p=
selectors probed

Certificate (current)

Amazon RSA 2048 M03
from 2025-09-09 to 2026-10-09
Expires in 141 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://justbooks.co.uk/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; img-src 'self' *.abebooks.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://widget.pulse.aws.dev/pulse-js-widget.v0.1.0.js; style-src 'self' 'unsafe-inline'; font-src 'self'; connect-src 'self' https://unagi.amazon.com/1/events/com.amazon.csm.csa.prod https://api.pulse.aws

Links to (3)

Linked from (3)