indexo.dev

nysecnow.org

.org crawl

First seen 2026-04-16 · Last seen 2026-05-14 · ok HTTP/1.1 200 3371 ms crawled 2026-05-11

US · 50.28.79.147 · AS32244 Liquid Web, L.L.C

Reputation 94/100 dmarc monitor-only

sector other type homepage

HTML metadata

Title
Heating Oil Dealer Association | New York City-Nassau-Suffolk | NYSEC
Language
en
Canonical
https://nysecnow.org/

Technology

Server
nginx
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • cdn.jsdelivr.net×2
  • fonts.googleapis.com×2
  • code.jquery.com×1
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
GoDaddy.com, LLC
Created
2020-01-10
Expires
2027-01-10 236 days left
Updated
2026-02-24
Name servers
  • ns1.prisvr3.com
  • ns2.prisvr3.com

DNS records live

NS
  • ns1.prisvr3.com
  • ns2.prisvr3.com
MX
  • 10 d207575a.ess.barracudanetworks.com
  • 20 d207575b.ess.barracudanetworks.com
TXT
  • google-site-verification=FTpu1xH9XVCqqzMC_lo3MebtGYoLD2xwFeXFxrEIz3w
  • MS=ms18741855

Email authentication partial

SPF
v=spf1 ip4:50.28.78.232 ip4:50.28.79.147 include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com include:emsd1.com -all
strict (-all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:rua+nysecnow.org@dmarc.barracudanetworks.com; ruf=mailto:ruf+nysecnow.org@dmarc.barracudanetworks.com
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCgH0Uw2cTIjEENt63qtR8CAK12bZZNZCjRv3mI+L6DwSUfDfBuKtK4Xk9nNIiM1AaLY0iFP+mzzaQmL1jggK…
selectors probed

Certificate (current)

RapidSSL TLS RSA CA G1
from 2025-12-04 to 2026-12-10
Expires in 205 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://nysecnow.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self), camera=(), microphone=(), fullscreen=(self), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; img-src 'self' data: ssl.google-analytics.com i.vimeocdn.com www.energystar.gov cdn.jsdelivr.net www.googletagmanager.com secure.tigergateway.net; font-src 'self' data: fonts.gstatic.com ka-f.fontawesome.com cdnjs.cloudflare.com fonts.googleapis.com use.fontawesome.com; media-src 'self' youtube.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.google.com player.vimeo.com www.gstatic.com ssl.google-analytics.com code.jquery.com cdn.jsdelivr.net www.google-analytics.com ajax.googleapis.com www.googletagmanager.com cdnjs.cloudflare.com jquery.com kit.fontawesome.com use.fontawesome.com secure.tigergateway.net; style-src 'self' 'unsafe-inline' cdn.jsdelivr.net use.fontawesome.com fonts.googleapis.com cdnjs.cloudflare.com; connect-src 'self' analytics.google.com cdn.jsdelivr.net stats.g.doubleclick.net ka-f.fontawesome.com www.google-analytics.com secure.tigergateway.net; child-src 'self' td.doubleclick.net player.vimeo.com maps.google.com www.youtube.com google.c
strict-transport-security
max-age=63072000; includeSubDomains

Links to (14)

Linked from (5)