recruit-holdings.com
Technology
- CDN
- Cloudflare
- Analytics
-
- Cloudflare Insights
Third-party hosts loaded (1)
- static.cloudflareinsights.com×1
Registration
- Registrar
- Japan Registry Services Co., Ltd.
- Created
- 2017-09-14
- Expires
- 2026-09-14 101 days left
- Updated
- 2025-09-09
- Name servers
-
- harmony.ns.cloudflare.com
- uriah.ns.cloudflare.com
DNS records live
- NS
-
- harmony.ns.cloudflare.com
- uriah.ns.cloudflare.com
- MX
-
- 1 aspmx.l.google.com
- 10 aspmx2.googlemail.com
- 10 aspmx3.googlemail.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- TXT
-
ca3-1f087a4847194a0ca0b77e6825686b39ca3-c4a4a5875c774ffb897a3b99b21beb4b
- Verified for
-
- Apple
- DocuSign
- Zoom
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:dmarc_report@recruit-holdings.com,mailto:recruithd00001-ra@dmarc25.jp; ruf=mailto:dmarc_report@recruit-holdings.compolicy: reject (enforced) - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5mIDwt5z5GNnagKsaOsnc9hWXabxrr9SQ83UePCgzflWzFeRDiSrJ5X3k6ueawEkP+9XXhQa9EYIDW…
selectors probed - google:
Certificate (current)
WE1
Expires in 81 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
img-src * data:; media-src *; script-src 'self' 'unsafe-inline' *.google.com www.gstatic.com *.googletagmanager.com *.cloudflareinsights.com *.clarity.ms *.matomo.cloud www.google-analytics.com www.youtube.com players.brightcove.net vjs.zencdn.net; frame-src *.google.com asia.tools.euroland.com players.brightcove.net bcove.video www.youtube.com td.doubleclick.net; worker-src 'self' blob:;- strict-transport-security
max-age=15552000
Linked from (1)
- g1.org×1