mft.nhs.uk

HTML metadata

Technology

Server

Apache

CMS

WordPress

Analytics

• Google Tag Manager

Third-party hosts loaded (3)

• cdn.jsdelivr.net×2
• translate.google.com×1
• www.googletagmanager.com×1

Social

• twitter
• facebook

Contact

Email

• patient.compliments@mft.nhs.uk

Address

st acute Trusts in the UK, employing over 28,000 staff. It was formed on 1 October 2017

DNS records live

NS

• ns1.nhs.uk
• ns2.nhs.uk
• ns3.nhs.uk
• ns4.nhs.uk

MX

• 0 mft-nhs-uk.mail.protection.outlook.com

TXT

Show 9 TXT records

• MS=ms87584509
• 00D0O000000rwim=1TBPz00000001pf
• _njt44kg9sejesx1eojdmml81dk4be9r
• apple-domain-verification=mRq20LRPhzqyaj9G
• zoho-verification=zb94263729.zmverify.zoho.uk
• bw=r85bbxRLUcNNEUU8Qs4oVbPDJo2zbkRxVRqdeLAu6Vsg
• pexip-ms-tenant-domain-verification=8e5961a5-5399-4997-ba43-3440e7b4647c
• Bbd5LDayze3CNAZgK/b1rorWeOy+PIhAzwqblHtny8ijk5dTeOpaFIoZ2QVLDM9Pa2GJ3OzuHi7dMwDlctS9GA==
• MS=ms51503514

Email authentication strong

SPF

v=spf1 include:_spf.nhs.net include:spf.protection.outlook.com ip4:62.252.130.4 ip4:62.252.130.74 ip4:62.252.130.75 ip4:62.255.159.20 ip4:31.121.159.58 ip4:31.121.159.59 ip4:185.96.64.79 ip4:185.99.237.11 ip4:91.192.194.110 include:aspmx.pardot.com include:kallidus-suite.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc-reports@mft.nhs.uk; ruf=mailto:dmarc-reports@mft.nhs.uk

policy: reject (enforced)

DKIM

Show 6 DKIM selectors

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSdNFNGsDu8ZpT1bQ30+cBR7dfTTAxtp07PT/q3GEjb26Xr4eVPg4PQXEIuPmbP9+/Y6D4Q3rO80/v…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGrSUwM7OzEdVDKSo1BQFzYv4R5zb4VOpxyc7PqVQ+4MYdCVxO9ruOOZP/kh7schhjv6rqGDpoLqfi…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
• mail: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdsfSS9VYBl7SscOkqbVmkBiIIA7so9rzSZS1UZqLFeca9sRuepc3lngILIKW4nOY30NvPJVn894BsGCf1eL…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUMTwya/hXNPZf5pSQdhCtn987SnebwoLMmsrdsWWZyQQjlrAjJBYwJqyAWFS859jhe197CzKJ0SNxET3w…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAur0mUo7caC8281XtcvTWsWxRkei5tJDTCuXrHLlD2LSzDxhdiOxks6CHv4sJOfqe53ODVACQ7djdMu1VYs…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://mft.nhs.uk/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing Permissions Policy

Links to (8)

• cmft.nhs.uk×2
• disabledgo.com×2
• dynamite-technology.com×2
• facebook.com×2
• manchesterlco.org×2
• membra.co.uk×2
• traffordlco.org×2
• twitter.com×2

Linked from (2)

• proxximos.com×2
• jewishbrca.org×1