loft.com

.com toplist crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 2619 ms crawled 2026-05-18

US · 104.18.144.226 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: Access to this page has been denied.

Technology

CDN: Cloudflare

Analytics

Cloudflare Insights

Fonts

Google Fonts

Third-party hosts loaded (3)

cdn.cquotient.com×1
fonts.googleapis.com×1
static.cloudflareinsights.com×1

Registration

Registrar

CSC Corporate Domains, Inc.

Created

1997-03-17

Expires

2027-03-18 302 days left

Updated

2026-03-15

Name servers

udns1.cscdns.net
udns2.cscdns.uk

DNS records live

NS

udns1.cscdns.net
udns2.cscdns.uk

MX

10 mxa-0099b901.gslb.pphosted.com
10 mxb-0099b901.gslb.pphosted.com

TXT

Show 15 TXT records

_tqndd1z0tg65m2dfps0kzjbg4t9i2wb
p76hxyy7mc42q5br7psjbyndx3g4vzl3
syxmvrybt6b2c09q55wlnfsn9sy3rh6n
docusign=c5c05b5b-cdcf-4146-8889-f04d3a751076
miro-verification=96e41f3cae1b68670a5af0dae2aa54f4a744d6dc
smartsheet-site-validation=PIsxmeq86i5OSfHxzPMJrP99a3OpzF-l
google-site-verification=LLs4I78JehiHpktGjiQvG3nhMqjCMWiUVolBZNZW6Vo
google-site-verification=R0VtH-68Az1XSakEze5oB4jcN3z35BkIbSfkqmuYwfc
google-site-verification=_jimsDUZUq-22TWYRlkp4932LhiW-uFgVzjKnQzclUU
google-site-verification=npGCDLAfOgt5HokTsiXpBd083df60ILIF8iEpHPsChg
adobe-idp-site-verification=308c0bc9c17b30803ee3553e48d6c296845d801df1739040e7762445bec46bda
atlassian-domain-verification=0Pdq19Ik/PbeLYMJr176BS/xGC0pfufwOPMiDWFxb/1PHEI8otSA85WHNkJDmMKa
8rmc1pgdgkrr49k9l8zck8qhc9vkq8sq
_8rvye2o0982x6f2b6t47p91m825h62n
_8u499xmckek5oo0kiupdy92f3uis84n

Email authentication strong

SPF

v=spf1 ip4:69.20.100.231/32 ip4:74.117.201.0/24 include:knitwellgroup.com include:rnmk.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; sp=none; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com

policy: quarantine · sp=none

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqv3z/i9Nlg35RYuxcSUZGY3+IUVG4XDI9GVX2qfiIsL7Tmj1ebRR+u5vAGlzqm2E1qtltUDzWvT8hlo0+E…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPEgAgpdcjTTIaMzMVIOh+efKqgRsBqhFrR85KhkRYz6AdcxTszltFuFxC7vH9xENdIvugqXG5vq/QrolZ/RWGdW…

selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2026-05-14 to 2026-11-29

Expires in 193 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.loft.com/on/demandware.store/Sites-Loft-Site/default/PX-Show?url=aHR0cHM6Ly93d3cubG9mdC5jb20vb24vZGVtYW5kd2FyZS5zdG9yZS9TaXRlcy1Mb2Z0LVNpdGU%3d&frame=1779128440671

present

strict-transport-security
content-security-policy
x-content-type-options

findings

missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' http://api.securedvisit.com http://track.securedvisit.com http://content.securedvisit.com http://images.securedvisit.com http://track.sv.rkdms.com https://cdn-us.algoliaradar.com https://insights.algolia.io/1/events https://insights.algolia.io/1/searches
strict-transport-security: max-age=31536000