openfoodnetwork.net

.net crawl

First seen 2026-05-01 · Last seen 2026-05-08 · ok HTTP/1.1 200 1353 ms crawled 2026-05-08

US · 24.199.99.209 · AS14061 DigitalOcean, LLC

Reputation 94/100 dmarc monitor-only

sector food type homepage

HTML metadata

Title: Welcome to Open Food Network

Open Graph

title: Open Food Network
description: We begin from the ground up. With farmers and growers ready to tell their stories proudly and truly. With distributors ready to connect people with products fairly and honestly. With buyers who believe that better weekly shopping decisions can seriously change the world.

Technology

Server: nginx
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (3)

d2wy8f7a9ursnm.cloudfront.net×1
fonts.googleapis.com×1
js.stripe.com×1

Social

Contact

Email

support-usa@openfoodnetwork.net

Registration

Registrar

Cloudflare, Inc.

Created

2013-07-06

Expires

2026-07-06 47 days left

Updated

2025-06-06

Name servers

craig.ns.cloudflare.com
kami.ns.cloudflare.com

DNS records live

NS

craig.ns.cloudflare.com
kami.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=mLuM_lATVU4e4cJcaLVIy2KlcWKKn4eBJf7lU_xGSxw

Email authentication partial

SPF

v=spf1 include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:support-usa@openfoodnetwork.net; ruf=mailto:support-usa@openfoodnetwork.net; fo=1

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVQ0E3f4Wfn/hyjjCmOb1ERAqZtuRcqrSObUekLuVkP2s3WbDEYJi73RP/tjZZt1UGC+IQsoO9Dx0R82Nh…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxQfJ9kliAlnIhSu4QvUgNgSuU1g+I4Pn+NFKMN83gjLlurrmQDqaVShhW7Hyez7KcAymF4RewikKa1nIO…

selectors probed

Certificate (current)

R12

from 2026-04-09 to 2026-07-08

Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://openfoodnetwork.net/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
weak content type protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff, nosniff
content-security-policy: default-src 'self' https:; font-src 'self' https: data: fonts.gstatic.com; img-src 'self' https: data: *.s3.amazonaws.com; object-src 'none'; frame-ancestors 'none'; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' *.stripe.com openfoodnetwork.innocraft.cloud maps.googleapis.com maps.gstatic.com d2wy8f7a9ursnm.cloudfront.net; style-src 'self' https: 'unsafe-inline' fonts.googleapis.com cdnjs.cloudflare.com; connect-src 'self' https: https://openfoodnetwork.net wss://openfoodnetwork.net
strict-transport-security: max-age=63072000; includeSubDomains

Links to (6)

Linked from (1)

uphillfarmvt.com×1