orsymphony.org

HTML metadata

Title: Oregon Symphony
Description: Your official source for Oregon Symphony Tickets. Explore the Oregon Symphony located in Portland and Salem, OR. Join us for one of our world-class concerts.
Language: en

Open Graph

url: https://www.orsymphony.org/
title: Oregon Symphony
site name: Oregon Symphony
description: Your official source for Oregon Symphony Tickets. Explore the Oregon Symphony located in Portland and Salem, OR. Join us for one of our world-class concerts.

Technology

CDN: Amazon CloudFront
CMS: Gatsby

Analytics

Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (4)

us-west-2.graphassets.com×16
consent.cookiebot.com×4
www.googletagmanager.com×3
consentcdn.cookiebot.com×2

Social

Contact

Phone

503.228.1353

Registration

Registrar

Network Solutions, LLC

Created

1996-02-04

Expires

2031-02-05 1722 days left

Updated

2026-03-22

Name servers

alina.ns.cloudflare.com
maxim.ns.cloudflare.com

DNS records live

NS

alina.ns.cloudflare.com
maxim.ns.cloudflare.com

MX

10 orsymphony-org.mail.protection.outlook.com

TXT

Show 9 TXT records

_globalsign-domain-verification=PpaHg3pejmR4e3q5Cn3HzmvzyZLplfTxYkzSDCAB31
adobe-idp-site-verification=12e11d4b22ef8b151824030eda80bd11ab608b42f15421d8319ca14854395cef
apple-domain-verification=xAVEsLFjss4FDD1X
at1o11bethpgrun76luninomc3
facebook-domain-verification=pmriwm3i95h11ts589oau9yyz00lqt
google-site-verification=dJ43N2bNMhit87wYmcRmVk8k_k-LUWDzO9ddprL4Sm4
nptnro7f5n4s3vrospdd8n2r9k
4ea1vgtog12mlpgllgkrdihe4f
MS=ms21575627

Email authentication strong

SPF

v=spf1 mx ip4:50.173.48.48/29 ip4:50.173.48.56/29 ip4:50.188.177.88/29 include:spf.protection.outlook.com include:outboundmail.blackbaud.net -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:668be5c8@mxtoolbox.dmarc-report.com; ruf=mailto:668be5c8@forensics.dmarc-report.com

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5r/ARUAF+obq+HAgNAYeM4/9oam4EPIA7szXdzxWZsc0UHuinv7Ct3ls7qQIhuydBCYY3Rr5NhXafiJrwLI…

selectors probed

Certificate (current)

Amazon RSA 2048 M04

from 2026-01-13 to 2027-02-12

Expires in 268 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://orsymphony.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: child-src 'self' www.googletagmanager.com https:; connect-src 'self' *.hsforms.com www.googletagmanager.com *.ctfassets.net vimeo.com https: consentcdn.cookiebot.com consent.cookiebot.com *.orsymphony.org; default-src 'self' https:; font-src data: 'self' https: *.vimeocdn.com; frame-src 'self' www.googletagmanager.com https: consentcdn.cookiebot.com consent.cookiebot.com *.orsymphony.org; img-src data: 'self' https: *.ctfassets.net *.vimeocdn.com *.akamaized.net *.orsymphony.org; media-src data: 'self' https: *.ctfassets.net *.vimeocdn.com *.akamaized.net *.orsymphony.org; object-src 'none'; script-src data: 'unsafe-inline' 'wasm-unsafe-eval' 'unsafe-eval' 'self' https: www.googletagmanager.com *.hsforms.net vimeo.com *.vimeocdn.com player.vimeo.com consentcdn.cookiebot.com consent.cookiebot.com *.orsymphony.org; style-src data: 'unsafe-inline' 'self' https: *.vimeocdn.com *.orsymphony.org; worker-src 'none'; form-action 'self' *.hsforms.com https: *.orsymphony.org; frame-ancestors 'se
strict-transport-security: max-age=31536000; includeSubDomains