indexo.dev

mckennalodging.com

.com crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 2819 ms crawled 2026-05-30

US · 54.70.111.180 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
McKenna Lodging,
Description
Short Term and Mid Term Rental Lodging for Vacation Getaway
Language
en
Canonical
https://www.mckennalodging.com/

Open Graph

url
https://www.mckennalodging.com/
title
McKenna Lodging,
locale
en
description
Short Term and Mid Term Rental Lodging for Vacation Getaway

Technology

Server
nginx
CMS
Next.js
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (9)
  • bookingenginecdn.hostaway.com×37
  • static-production-nextjs.hostaway.eu×23
  • fonts.googleapis.com×3
  • www.googletagmanager.com×3
  • hostaway-platform.s3.us-west-2.amazonaws.com×2
  • bookingenginecdn-2.hostaway.com×1
  • cdn.brevo.com×1
  • fonts.gstatic.com×1
  • widget.getbesty.ai×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2020-12-28
Expires
2026-12-28 209 days left
Updated
2025-12-29
Name servers
  • ns11.domaincontrol.com
  • ns12.domaincontrol.com

DNS records live

NS
  • ns11.domaincontrol.com
  • ns12.domaincontrol.com
MX
  • 0 mckennalodging-com.mail.protection.outlook.com
TXT
  • NETORGFT18008755.onmicrosoft.com
Verified for
  • Brevo

Email authentication partial

SPF
v=spf1 include:secureserver.net include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:maxx@mckennalodging.com,mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FHeUtOzblP1DG0CKQIrbtCZo0KCNZIhfJ8UKQtf+oM2JsYiB+FIndXLRfxLqKQ7k3bkXBOn35wPG4…
selectors probed

Certificate (current)

R13
from 2026-04-23 to 2026-07-22
Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.mckennalodging.com/

present
  • strict-transport-security
  • content-security-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
script-src 'self' https://* 'unsafe-inline' 'unsafe-eval'; style-src 'self' https://* blob: 'unsafe-inline'; img-src 'self' https://* data: blob:; media-src 'self' https://*; connect-src 'self' https://* wss://*; form-action 'self' https://*; frame-src 'self' https://*; frame-ancestors 'self' https://*; worker-src 'self' https://* 'unsafe-inline' 'unsafe-eval' blob:
strict-transport-security
max-age=600

Links to (3)

Linked from (1)