l2p.co.uk

.uk crawl

First seen 2026-04-20 · Last seen 2026-05-11 · ok HTTP/1.1 200 2533 ms crawled 2026-05-14

GB · 18.169.67.158 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: L2P | Discover why Trusts are switching to L2P
Language: en

Technology

Server: nginx

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×2
fonts.gstatic.com×1
pro.fontawesome.com×1
www.googletagmanager.com×1

Contact

Email

support@l2p.co.uk

Registration

Registrar

Gandi

Created

2004-03-09

Expires

2027-03-09 292 days left

Updated

2026-02-06

Name servers

ns-112-b.gandi.net.
ns-182-a.gandi.net.
ns-230-c.gandi.net.

DNS records live

NS

ns-112-b.gandi.net
ns-182-a.gandi.net
ns-230-c.gandi.net

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification:wR1jclTZ3ld04P3ZRFp69fRfFuV5f7Cl3Jyu-sXPKq4

Verified for

Brevo
Google

Email authentication partial

SPF

v=spf1 include:zcsend.net include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:dmarc@l2p.co.uk,mailto:rua@dmarc.brevo.com; ruf=mailto:dmarc@l2p.co.uk; rf=afrf; fo=0; aspf=r; adkim=r; ri=86400

policy: none (monitoring only)

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5rUI4yPnQ1h1zPXi4pCeayFO0t5s10SYQM1XdRMbSsjwUqkGGqoZMYHCdNRrhC/bdmic5SNINCSdqzIw4c…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyo1pI/n4ZF8lnmg0Xjruk0Hc6kEe9HO7qhRpIBJsucfIPE2Z7asXPWVCC/WDD0w73ttuUOsxZkt9xh7RuV/MhCK…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-05-01 to 2026-11-15

Expires in 178 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://l2p.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https:; font-src https: data:; img-src 'self' https: data:; object-src 'none'; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' https://www.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://rum-static.pingdom.net https://code.jquery.com https://cdnjs.cloudflare.com https://stackpath.bootstrapcdn.com https://app.getbeamer.com https://cdn.www.l2p.co.uk; style-src 'self' https: 'unsafe-inline' https://fonts.googleapis.com https://kendo.cdn.telerik.com https://cdn.www.l2p.co.uk
strict-transport-security: max-age=63072000; includeSubDomains
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: same-origin

Links to (1)

l2p.uk×2

Linked from (1)

medicalappraisals.org.uk×2