peachtree-city.org

HTML metadata

Technology

Server

Microsoft-IIS

jQuery

3.7.1

Stack

ASP.NET

Third-party hosts loaded (3)

• elfsightcdn.com×3
• app-script.monsido.com×1
• docaccess.com×1

Social

• youtube

DNS records live

NS

• ns0.dnsmadeeasy.com
• ns1.dnsmadeeasy.com
• ns2.dnsmadeeasy.com
• ns3.dnsmadeeasy.com
• ns4.dnsmadeeasy.com

MX

• 10 d226878a.ess.barracudanetworks.com
• 20 d226878b.ess.barracudanetworks.com

TXT

Show 4 TXT records

• is0lo3uru1i0juajfkhnpg5iuk
• 2lnvbagc994sbkg6a5iumuk158
• MS=0BA644449B67C2FE383AC1F8DB2E0E5E5386FE6E
• duo_sso_verification=eHOZaIpi9JlZMcl9y3km6tzjsln5qIa3KIW5lfKcSBYnoEIwyT2KuWNQKcD8bNAn

Verified for

• Apple
• Microsoft 365

Email authentication partial

SPF

v=spf1 mx ip4:216.130.129.70/32 ip4:216.130.131.181/32 ip4:216.130.138.10/32 +ip4:168.245.102.208 a:mail.peachtree-city.org include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com include:spf-us.emailsignatures365.com include:spf.constantcontact.com ~all

softfail (~all)

DMARC

v=DMARC1;p=none;rua=mailto:8544361aa9@rua.easydmarc.us;ruf=mailto:8544361aa9@ruf.easydmarc.us;fo=1;

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvSFVXfrWdJ/D7Qw+zkBV7J3LpyR9NhcjOeTP+HmkyJiOwQYk5j8l8/xuMqYk54RzHPXrDmQJ9vawB…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://peachtree-city.org/

present

• content-security-policy
• x-content-type-options

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (5)

• youtube.com×1
• visitpeachtreecity.com×1
• municode.com×1
• civicplus.com×1
• arcgis.com×1

Linked from (2)

• stadiamaps.com×1
• amphitheater.org×1