myvarportal.com
HTML metadata
Technology
- Server
- Apache
Social
Contact
- Phone
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2021-05-19
- Expires
- 2026-05-19 0 days left
- Updated
- 2024-05-20
- Name servers
-
- ns53.domaincontrol.com
- ns54.domaincontrol.com
DNS records live
- NS
-
- ns53.domaincontrol.com
- ns54.domaincontrol.com
- MX
-
- 0 myvarportal-com.mail.protection.outlook.com
- TXT
-
li625m716jrn77n2uuv4art654NETORGFT13867772.onmicrosoft.com
Email authentication partial
- SPF
-
v=spf1 include:secureserver.net -allstrict (-all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzI8LL+4RWnXrO1DUylO5AM1PKC0BY1lSQW3dJ2DhKXDaKAvHrLl4ebwTeu9t7Q/EXHM6NDcV/zkEjjk+U… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqkCje+gmaNR0Zf0LXHZ7zLwmgqSRgwbnCxzQ5SGG5HKcwYVqJwjaAesaScJKgBpHOO2I7rtdKmJkZZFz6a…
selectors probed - s1:
Certificate (current)
Go Daddy Secure Certificate Authority - G2
Expires in 135 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; font-src * 'self' data:; style-src * 'unsafe-inline';- strict-transport-security
max-age=31536000; includeSubDomains; preload
Links to (6)
- ooma.com×10
- facebook.com×4
- twitter.com×4
- linkedin.com×4
- instagram.com×4
- youtube.com×4
Linked from (1)
- ooma.com×3