indexo.dev

laudatosiactionplatform.org

.org crawl

First seen 2026-04-21 · Last seen 2026-05-20 · ok HTTP/1.1 200 948 ms crawled 2026-05-14

GB · 67.207.71.225 · AS14061 DigitalOcean, LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Laudato Si' Action
Language
en-GB
Canonical
https://laudatosiactionplatform.org/

Open Graph

url
https://laudatosiactionplatform.org/
title
Laudato Si' Action Platform
locale
en_US
site name
Laudato Si' Action Platform

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Font Awesome

Third-party hosts loaded (4)

  • code.jquery.com×2
  • use.fontawesome.com×2
  • www.googletagmanager.com×2
  • www.google.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2020-08-13
Expires
2026-08-13 84 days left
Updated
2025-09-27
Name servers
  • ns35.domaincontrol.com
  • ns36.domaincontrol.com

DNS records live

NS
  • ns35.domaincontrol.com
  • ns36.domaincontrol.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google

Email authentication weak

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-07 to 2026-08-05
Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://laudatosiactionplatform.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
ALLOW-FROM https://*.salesforce.com https://*.force.com
x-content-type-options
nosniff
content-security-policy
connect-src 'self' https://www.google-analytics.com https://*.my.site.com https://*.my.salesforce.com https://*.salesforce.com https://*.force.com https://*.hotjar.com wss://*.hotjar.com https://api.ipify.org; default-src 'self'; font-src 'self' data: https://*.salesforce.com https://*.force.com https://*.my.site.com; frame-src 'self' https://www.youtube.com https://*.my.site.com https://*.my.salesforce.com https://www.google.com https://*.salesforce.com https://*.force.com https://*.hotjar.com; img-src 'self' data: https://i.ytimg.com https://secure.gravatar.com;; media-src 'self'; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://*.salesforce.com https://*.force.com https://*.hotjar.com https://*.my.site.com https://*.my.salesforce.com https://api.ipify.org https://static.hotjar.com https://use.fontawesome.com; style-src 'self' 'unsafe-inline' https://*.sal
strict-transport-security
max-age=31536000; includeSubDomains;, max-age=31536000; includeSubDomains

Links to (3)

Linked from (4)