narimadison.org
HTML metadata
Technology
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (3)
- www.youtube.com×5
- fonts.googleapis.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- NameCheap, Inc.
- Created
- 2009-04-28
- Expires
- 2027-04-28 344 days left
- Updated
- 2025-04-06
- Name servers
-
- dns1.registrar-servers.com
- dns2.registrar-servers.com
DNS records live
- NS
-
- dns1.registrar-servers.com
- dns2.registrar-servers.com
- MX
-
- 10 mx1-us2.ppe-hosted.com
- 20 mx2-us2.ppe-hosted.com
- TXT
-
MS=ms44048117ppe-529e445e2bf64d2dd5d3
Email authentication partial
- SPF
-
v=spf1 a:dispatch-us.ppe-hosted.com a:webmail.mydirectcloud.com a:mail.mydirectcloud.com include:spf.memberzone.com include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - k2:
Certificate (current)
R12
Expires in 34 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src *.googletagmanager.com *.facebook.com app.icontact.com d3ivu4a8dlp8kc.cloudfront.net 'self'; script-src *; img-src data: blob: *; media-src *; font-src * data:; style-src 'unsafe-inline' *; frame-ancestors * 'self'; connect-src *; frame-src www.google.com *.facebook.com www.youtube.com 'self';