nachl.org

.org crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 975 ms crawled 2026-05-31

US · 104.16.222.243 · AS13335 Cloudflare, Inc.

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title: Home of the North American Collegiate Hockey League
Language: en-us

Technology

CDN: Cloudflare
jQuery: 3.7.1

Analytics

Google Tag Manager

Third-party hosts loaded (12)

app-assets3.sportngin.com×5
assets.ngin.com×5
app-assets1.sportngin.com×4
app-assets2.sportngin.com×4
cdn4.sportngin.com×4
cdn2.sportngin.com×3
cdn3.sportngin.com×2
se-aws-snap.sportngin.com×2
www.googletagmanager.com×2
cdn1.sportngin.com×1
ngin-bar.sportngin.com×1
www.google.com×1

DNS records live

NS

ns10.digicertdns.com
ns11.digicertdns.com
ns12.digicertdns.com
ns13.digicertdns.net
ns14.digicertdns.net
ns15.digicertdns.net

MX

Show 7 MX records

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
10 smtp.secureserver.net
20 mailstore1.secureserver.net
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

v=DMARC1; p=none; rua=mailto:your_jlarochester@nachl.com

Email authentication weak

SPF: v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

YE2

from 2026-05-29 to 2026-08-27

Expires in 84 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.nachl.org/

present

content-security-policy-report-only
x-content-type-options
referrer-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy-report-only: block-all-mixed-content; report-uri /csprep/log;

Links to (1)

sportsengine.com×1