kcaran.com
HTML metadata
Technology
- Server
- Apache
- Fonts
-
- Google Fonts
Third-party hosts loaded (2)
- fonts.googleapis.com×1
- fonts.gstatic.com×1
Social
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2004-03-23
- Expires
- 2027-03-23 294 days left
- Updated
- 2026-03-24
- Name servers
-
- ns15.domaincontrol.com
- ns16.domaincontrol.com
DNS records live
- NS
-
- ns15.domaincontrol.com
- ns16.domaincontrol.com
- MX
-
- 10 mail.mlougee.com
- 30 home.kcaran.com
- Verified for
-
Email authentication weak
- SPF
-
v=spf1 ip4:69.164.214.109 ip6:2600:3c03::f03c:92ff:fede:7c0e include:_spf.google.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
-
- default:
v=DKIM1; k=rsa; s=email; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDraX7S5J4wv2xdhmhvf+kSEYXk5FTUS4dBWbaUks7ih/vAtc6qKls+peWC0ihKagvxLGulwY5xq…
selectors probed - default:
Certificate (current)
R13
Expires in 41 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.twimg.com *.twitter.com; connect-src 'self' ; font-src 'self' data: *.gstatic.com; frame-src 'self' *.twitter.com; img-src 'self' data: blob: 'unsafe-inline' https:; style-src 'self' 'unsafe-inline' *.googleapis.com *.twimg.com *.twitter.com; base-uri 'self'; object-src 'none'- strict-transport-security
max-age=63072000; includeSubDomains
Links to (6)
- twitter.com×1
- perlhacks.com×1
- github.com×1
- fosstodon.org×1
- blogspot.com×1
- 11ty.dev×1