indexo.dev

queensarmslitton.com

.com crawl

First seen 2026-05-06 · Last seen 2026-05-06 · ok HTTP/1.1 200 607 ms crawled 2026-05-13

GB · 35.214.46.73 · AS15169 Google LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
The Queens Arms Litton - Refreshingly Traditional
Description
As pub locations go, they don’t come better than the Queens Arms at Litton in the heart of the Yorkshire Dales National Park.
Language
en-GB
Canonical
https://queensarmslitton.com/

Open Graph

url
https://queensarmslitton.com/
title
The Queens Arms Litton - Refreshingly Traditional
locale
en_GB
site name
The Queens Arms Litton
description
As pub locations go, they don’t come better than the Queens Arms at Litton in the heart of the Yorkshire Dales National Park.

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×2
  • fonts.gstatic.com×2
  • gmpg.org×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
GoDaddy.com, LLC
Created
2024-11-09
Expires
2026-11-09 173 days left
Updated
2025-11-10
Name servers
  • ns19.domaincontrol.com
  • ns20.domaincontrol.com

DNS records live

NS
  • ns19.domaincontrol.com
  • ns20.domaincontrol.com
MX
  • 0 queensarmslitton-com.mail.protection.outlook.com
TXT
  • NETORGFT17720154.onmicrosoft.com
  • google-site-verification=CDGnhrXY4N76ntlAeyKafSkqmkhqtBy-ssRgtLN_hJ0

Email authentication weak

SPF
v=spf1 include:secureserver.net -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-06 to 2026-08-04
Expires in 76 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://queensarmslitton.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), camera=(), microphone=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' https: data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https:; font-src 'self' data: https:; connect-src 'self' https:; frame-src https:;
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin
cross-origin-resource-policy
same-origin

Links to (8)