indexo.dev

lehmans.com

.com crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 3554 ms crawled 2026-05-30

US · 44.209.231.57 · AS14618 Amazon.com, Inc.

Reputation 69/100 wrong cert dmarc partial coverage

Classifying

HTML metadata

Title
Lehman's - Products For Simple Living
Description
Live simply with the Lehman's online store. We sell oil lamps, wood cook stoves & more. Non-electric tools & homesteading supplies since 1955.
Language
en
Canonical
https://www.lehmans.com/

Technology

Server
Apache
jQuery
3.6.0
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (9)
  • cdn.commercev3.net×46
  • fonts.googleapis.com×2
  • stackpath.bootstrapcdn.com×2
  • www.googletagmanager.com×2
  • assets.9gtb.com×1
  • code.jquery.com×1
  • config.gorgias.chat×1
  • s3.amazonaws.com×1
  • static.klaviyo.com×1

Contact

Phone

Registration

Registrar
GoDaddy.com, LLC
Created
1996-03-28
Expires
2027-07-15 407 days left
Updated
2022-09-12
Name servers
  • ns19.domaincontrol.com
  • ns20.domaincontrol.com

DNS records live

NS
  • ns19.domaincontrol.com
  • ns20.domaincontrol.com
MX
  • 0 lehmans-com.mail.protection.outlook.com
TXT
  • klaviyo-site-verification=WkiAic
  • L12WYZTBAGXQTQELOK6DG1UOMLF0PYLZPWUWLYJF
Verified for
  • Shopify

Email authentication strong

SPF
v=spf1 ip4:24.101.177.242 ip4:72.35.12.1/24 ip4:68.71.200.1/24 mx:triadinet.com mx:triadinet.net a:mail.aaih.net a:smtp-out3.electric.net include:commercev3.net include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;pct=15;rua=mailto:dmarc@lehmans.com;ri=86400;fo=1
policy: quarantine · pct=15
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIYRS60+26Zc5RyKGotogqq+eGmhugGHYST5518K2VLqJt3iqoDGjsrLnWLbK8Lzwa5RSIj7rSrYhixFTxIc…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyxFQO4Q8DY5BkX44fu1e+I9S+AGYffxs1XMUAppSFNMzkS2BaB00YxVRBx/9aqlhDt3eXeIvCmcihEUBXVD…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current) wrong cert

Sectigo Public Server Authentication CA DV R36
from 2026-05-18 to 2026-12-03
Expires in 183 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.lehmans.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
microphone=(), camera=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
child-src www.paypalobjects.com *.gorgias.chat *.9gtb.com *.gorgias-convert.com wss://*.gorgias.chat gorgias-convert.com; connect-src 'self' 'report-sample' s3.amazonaws.com/cv3.customfiles lehmans.commercev3.com www.google-analytics.com ssl.google-analytics.com ui.powerreviews.com stats.g.doubleclick.net analytics.google.com bat.bing.com www.paypal.com *.smartystreets.com ct.pinterest.com/user/ *.google-analytics.com *.analytics.google.com *.clarity.ms www.facebook.com *.klaviyo.com *.searchspring.io *.sezzle.com *.comm100.io s.yimg.com *.yotpo.com *.bootstrapcdn.com *.quora.com *.yottaa.net *.google.com www.googletagmanager.com ascendpartner.com *.ascendpartner.com *.udev1a.net content.hotjar.io *.hotjar.com cdn.cookielaw.org geolocation.onetrust.com udev1a.net *.parcellab.com *.pinterest.com ssl.kaptcha.com *.yottaa.com *.userway.org *.yottaa-prod.com *.gorgias.chat *.9gtb.com *.gorgias-convert.com wss://*.gorgias.chat gorgias-convert.com; default-src 'self' cdnprd.commercev3.ne
strict-transport-security
max-age=31536000; includeSubDomains

Links to (1)

Linked from (1)