luca-dellanna.com

HTML metadata

Title

Luca Dellanna - Advisor and Author

Description

I de-risk change initiatives. Author of 10+ books on management, adaptation, and decision-making.

Language

en

Canonical

https://luca-dellanna.com

Feeds

RSS feed RSS

Open Graph

url: https://luca-dellanna.com
title: Luca Dellanna - Advisor and Author
locale: en_US
site name: Luca Dellanna
description: I de-risk change initiatives. Author of 10+ books on management, adaptation, and decision-making.

Technology

CDN: Cloudflare
CMS: Next.js

Analytics

Google Analytics
Google Tag Manager

Third-party hosts loaded (2)

www.google-analytics.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

Cloudflare, Inc.

Created

2017-03-20

Expires

2027-03-20 303 days left

Updated

2026-02-18

Name servers

ada.ns.cloudflare.com
ed.ns.cloudflare.com

DNS records live

NS

ada.ns.cloudflare.com
ed.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Google
Meta
Stripe
Zoho

Email authentication strong

SPF

v=spf1 a mx include:_spf.google.com include:zoho.com include:one.zoho.eu ip4:104.21.85.69 ip4:172.67.203.28 ip6:2606:4700:3033::6815:5545 ip6:2606:4700:3030::ac43:cb1c ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; pct=100; ruf=mailto:luca@luca-dellanna.com; adkim=r; aspf=r

policy: quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOkv2duz7AhstNge2WqzyXtVyJO0yvnbCLOiqZRgQSUAk9QaI4ahd+924TQRU8x9K7HmZTBvN+/MbI…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

WE1

from 2026-04-11 to 2026-07-10

Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://luca-dellanna.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: DENY
permissions-policy: camera=(), microphone=(), geolocation=(), payment=(), usb=(), magnetometer=(), gyroscope=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.google-analytics.com https://vercel.live https://va.vercel-scripts.com https://cdn.segment.com https://cdn.jsdelivr.net https://*.youtube.com https://*.sentry.io https://tagmanager.google.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.jsdelivr.net; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' data: https: blob:; media-src 'self' https:; connect-src 'self' https://www.google-analytics.com https://analytics.google.com https://va.vercel-scripts.com https://vercel.live https://api.segment.io https://app.convertkit.com https://app.kit.com https://*.sentry.io https://region1.analytics.google.com https://stats.g.doubleclick.net https://tagmanager.google.com https://googletagmanager.com https://*.youtube.com https://www.youtube-nocookie.com; worker-src 'self' https://*.sentry.io; frame-src 'self' https://*.youtube.com https://youtu.be https://www
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin

Links to (5)

Linked from (1)

colemanm.org×3