onf.ca
HTML metadata
Technology
- Server
- uvicorn
- CMS
- Gatsby
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (5)
- dkyhanv6paotz.cloudfront.net×11
- www.onf.ca×4
- plus.google.com×1
- socel.net×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- A.R.C. Informatique Inc.
- Created
- 2000-11-06
- Expires
- 2031-08-25 1923 days left
- Updated
- 2025-03-31
- Name servers
-
- ns3.nfb.ca
- ns4.nfb.ca
- ns5.nfb.ca
DNS records live
- NS
-
- ns3.nfb.ca
- ns4.nfb.ca
- ns5.nfb.ca
- MX
-
- 10 onf-ca.mail.protection.outlook.com
- TXT
-
Show 10 TXT records
MS=ms26537848have-i-been-pwned-verification=a4e45c8ab915f31ed743bc9fe0ecec6cgoogle-site-verification=LgfyTfnGtVWLZsNyGZ0NqV2lf3srxsQUc72XHDeOFOcMS=ms27308068facebook-domain-verification=gfj76jwthrqlr7gpdepmuzhyu0h7k3miro-verification=cd2d7bdad6396f5761923f2962f1c1f40a5a3e16bcn=59BF248C-0772-11ED-9D0B-55E614E0321Eapple-domain-verification=6v6TvV5SKLHdZmHJfacebook-domain-verification=nkmxb7p4kg4063u0ja3x7jhsgrh50ysmartsheet-site-validation=fJyFysgBZx3u6HRND3ctFyFSK1wU7toM
Email authentication strong
- SPF
-
v=spf1 a ip4:52.20.37.54 ip4:199.84.162.0/24 include:carmamail.com include:spf.protection.outlook.com include:emrs._spf.ssc-spc.gc.ca a:nfb.managed-otrs.com include:mailgun.org ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=reject;pct=100;rua=mailto:dmarc_onf_ca@nfb.ca;ruf=mailto:dmarc_onf_ca@nfb.capolicy: reject (enforced) - DKIM
-
Show 4 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCS74QI75LUHnl2NAT9qqSRp7Dah3IRpQksfzQ+rapQJtTCJmhqLPQZxe/e2dYxeyE4zz898tzh/4CCgB2Jh5… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0Z2WDd2jHjBzLmzjYzOTZq/MRuZNjdc/ZotJAPF7PhToPlEmoPiyb3tQEXhsG4e8pxvTbPlWvDJgF… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAVO6Ux4I/Ic0nBnpV7gAZ70LkHKXNTjgtq/RW4olVsnn3n6RSZqQIyze8IcsNf4T96fbo16slB1X0NtkP… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCxeNI6N5nqfW+p6ldo5QN6YQ1Kss54nBp2AD0+7WcQ/tsw47fj5fdixT/olsN4ZA+lGx0fTqyhJ1zOyXEiiv1mD8…
selectors probed - selector1:
Certificate (current)
R12
Expires in 27 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
font-src 'self' https://*.onf.ca https://*.nfb.ca fonts.gstatic.com data: https://dkyhanv6paotz.cloudfront.net; frame-src 'self' https://*.nfb.ca https://*.onf.ca https://*.google.com https://bid.g.doubleclick.net https://www.gstatic.com https://www.youtube.com https://connect.facebook.net https://www.facebook.com https://pixel.mathtag.com/ https://d2v44bgsxxwb3t.cloudfront.net https://td.doubleclick.net https://*.adnxs.com/ https://*.adsrvr.org/ https://www.googletagmanager.com https://nfb-education-pilots.s3.ca-central-1.amazonaws.com; connect-src 'self' https://*.nfb.ca https://*.onf.ca https://dcly21uuqtecw.cloudfront.net https://d3acx5b8mnvbua.cloudfront.net https://d2vapbn8acl33j.cloudfront.net https://dkyhanv6paotz.cloudfront.net https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.g.doubleclick.net https://*.google.com https://*.google.ca https://www.googleadservices.com https://c212.net https://www.facebook.com https://sentry
Links to (10)
- apple.com×1
- facebook.com×1
- google.com×1
- instagram.com×1
- linkedin.com×1
- roku.com×1
- tiktok.com×1
- twitter.com×1
- vimeo.com×1
- youtube.com×1