orangebanktrust.com

HTML metadata

Title

Orange Bank & Trust Company | Since 1892

Description

Orange Bank & Trust Company (NASDAQ: OBT) is the Hudson Valley’s premier financial institution focusing on commercial lending and wealth management services.

Language

en-US

Canonical

https://www.orangebanktrust.com/

Feeds

Orange Bank & Trust » Home Comments Feed RSS

Open Graph

url: https://www.orangebanktrust.com/
title: Orange Bank & Trust Company | Since 1892
locale: en_US
site name: Orange Bank & Trust
description: Orange Bank & Trust Company (NASDAQ: OBT) is the Hudson Valley’s premier financial institution focusing on commercial lending and wealth management services.

Technology

Server: Apache
CMS: WordPress

Analytics

Google Tag Manager

Ads

Google Ads (DoubleClick)

Fonts

Google Fonts

Third-party hosts loaded (12)

cdnjs.cloudflare.com×5
www.googletagmanager.com×4
ad.doubleclick.net×2
clients.lk-cs.com×2
fonts.googleapis.com×2
ajax.googleapis.com×1
cdn.callrail.com×1
fonts.gstatic.com×1
gmpg.org×1
translate.google.com×1
www.facebook.com×1
www.google.com×1

Social

Contact

Phone

845-341-5000

Address

st Company |845-341-5000

Registration

Registrar

EnCirca, Inc.

Created

2015-01-16

Expires

2027-01-16 240 days left

Updated

2025-12-19

Name servers

dnssec1.encirca.net
dnssec2.encirca.net

DNS records live

NS

dnssec1.encirca.net
dnssec2.encirca.net

MX

10 d290036a.ess.barracudanetworks.com
15 d290036b.ess.barracudanetworks.com

TXT

0ycjzmptvt186v5bjh39ny8f8yft7r2y

Verified for

Apple
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spfhost.messageprovider.com include:spf.cashedge.com include:_spf.psm.knowbe4.com include:_spf.salesforce.com include:spf.ess.barracudanetworks.com  a:outbd-pstfx.customercenter.net a:outbd3-pstfx.customercenter.net include:spf.protection.outlook.com ip4:166.73.7.20/32 ip4:44.214.246.148/32 -all

strict (-all)

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:rua+orangebanktrust.com@dmarc.barracudanetworks.com; ruf=mailto:ruf+orangebanktrust.com@dmarc.barracudanetworks.com

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArPDFSNhwToedjHW5Mqr2+XQGmMZ4+StNICdEbqnMw4OwdUcsfqehAE1dZ39KwzZ6GaL9pUbxhHN4eLhBTw…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDLWq0mVcbOXNGF1nFpVdeUbIfbT+SYVZvcY3QVSDB9D1jKJ0bdPUWrt1T1jAI9ulxHofa75KP2mPvsJ+P4pviXVj…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2026-01-06 to 2027-02-05

Expires in 260 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.orangebanktrust.com/

present

strict-transport-security
content-security-policy
x-frame-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: default-src 'unsafe-inline' 'unsafe-eval' 'self' data: https://contentassistant.eu.siteimprove.com https://identity.siteimprove.com *.lk-cs.com blob: https://pagead2.googlesyndication.com https://analytics.google.com https://*.siteimprove.com https://*.w.org https://connect.facebook.net https://www.learnaboutmoneymovement.com https://images.printable.com https://www.facebook.com https://*.vimeocdn.com https://*.doubleclick.net https://*.callrail.com https://*.googleadservices.com https://translate.google.com https://id.siteimprove.com https://my2.siteimprove.com https://cdn.siteimprove.net https://secure.gravatar.com https://8826506.fls.doubleclick.net https://stats.g.doubleclick.net https://orangebanktrust.com https://secure.orangebanktrust.com https://issuu.com https://player.vimeo.com https://*.bootstrapcdn.com https://*.cloudflare.com https://*.typekit.net https://youtu.be/ https://*.youtu.be/ https://*.youtube.com https://*.hotjar.io https://*.hotjar.com wss://*.hotjar.com https:
strict-transport-security: max-age=31536000

Links to (13)

Linked from (1)

orangeny.com×1