openlookeng.io
HTML metadata
Technology
- Server
- elb
DNS records live
- NS
-
- ns1.huaweicloud-dns.cn
- ns1.huaweicloud-dns.com
- ns1.huaweicloud-dns.net
- ns1.huaweicloud-dns.org
- MX
-
- 10 mxbiz2.qq.com
- 5 mxbiz1.qq.com
Email authentication partial
- SPF
-
v=spf1 include:spf.mail.qq.com ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=none;sp=none;adkim=r;aspf=r;fo=1;rf=afrf;pct=100;ruf=mailto:tommylikehu@gmail.com;ri=86400policy: none (monitoring only) · sp=none - DKIM
-
- default:
v=DKIM1;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC+qEMr96Az54wF03RXEP6miBaLk45nQfjNfaDIx6wW/dGYtsPpSih7sg27jc7EWl0tzru+h8087dG7/sLqwYuN…
selectors probed - default:
Certificate (current)
RapidSSL TLS RSA CA G1
Expires in 142 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'; frame-src 'none'- strict-transport-security
max-age=31536000; includeSubDomains