indexo.dev

oxfordhealth.nhs.uk

.uk crawl

First seen 2026-04-25 · Last seen 2026-05-18 · ok HTTP/1.1 200 1098 ms crawled 2026-05-18

GB · 80.82.115.47 · AS41357 34SP.com Limited

Reputation 100/100

Classifying

HTML metadata

Title
Oxford Health NHS FT | Caring, safe and excellent
Description
Providing health and social care to people of all ages across Oxfordshire, Buckinghamshire, Swindon, Wiltshire, Bath and North East Somerset.
Language
en
Canonical
https://oxfordhealth.nhs.uk/
Feeds

Open Graph

url
https://oxfordhealth.nhs.uk/
title
Oxford Health NHS FT | Caring, safe and excellent
locale
en_GB
site name
Oxford Health NHS Foundation Trust
description
Providing health and social care to people of all ages across Oxfordshire, Buckinghamshire, Swindon, Wiltshire, Bath and North East Somerset.

Technology

Server
nginx
CMS
WordPress
Analytics
  • Plausible

Third-party hosts loaded (3)

  • assets.nhs.uk×1
  • gmpg.org×1
  • plausible.io×1

Social

Contact

Address
rd papersWork with usContact usComplaintsOverall rating:Good13 December 2019

DNS records live

NS
  • ns1.nhs.uk
  • ns2.nhs.uk
  • ns3.nhs.uk
  • ns4.nhs.uk
MX
  • 10 eu-smtp-inbound-psc-1.mimecast.com
  • 10 eu-smtp-inbound-psc-2.mimecast.com
TXT
  • s0g29ck258spcn0cra7l9sgvpa
  • ZA=12tVHsXO8jCNPelsNZo2MJNMbex3j8/yb1k2Lef93F8=
  • CWgbhpsgOuunUNCPxiB9inwHPWA8A8mndzvaCxP8Tx0V7N7N6enPhYbeWZKvsU0ZlmaDhuOQhJ6IF1PqN8XTVA==

Email authentication strong

SPF
v=spf1 ip4:86.188.150.2 ip4:212.250.5.214 include:spf.protection.outlook.com include:eu._netblocks.mimecast.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; rua=mailto:dmarc-rua@dmarc.service.gov.uk,mailto:DMARC@oxfordhealth.nhs.uk; ruf=mailto:DMARC@oxfordhealth.nhs.uk; fo=1
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-12 to 2026-07-11
Expires in 51 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://oxfordhealth.nhs.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' 'report-sample' https://cc.cdn.civiccomputing.com https://plausible.io https://*.limbic.ai https://Limbic.ai https://cdn.ebo.ai; style-src 'self' 'unsafe-inline' 'report-sample' https://fonts.googleapis.com https://assets.nhs.uk; img-src 'self' data: https://oxfordhealth.nhs.uk https://www.oxfordhealth.nhs.uk https://maps.gstatic.com https://assets.nhs.uk https://limbic-web-bot.s3.eu-west-2.amazonaws.com https://limbic-web-bot-versioning.s3.eu-west-2.amazonaws.com https://secure.gravatar.com/avatar/ https://ebooxford3ri.blob.core.windows.net/ https://cdn.ebo.ai/ https://s.w.org/; media-src 'self' https://oxfordhealth.nhs.uk https://www.oxfordhealth.nhs.uk blob:; connect-src 'self' data: blob: https://apikeys.civiccomputing.com https://plausible.io https://*.limbic.ai https://Limbic.ai Sentry.io https://*.sentry.io https://Mixpanel.com https://*.mixpanel.com https://postcodes.io https://*.postcodes.io https://getaddress
strict-transport-security
max-age=0;
cross-origin-opener-policy
unsafe-none
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-site

Links to (8)

Linked from (1)