indexo.dev

runbox.com

.com dns crawl

First seen 2026-05-01 · Last seen 2026-05-19 · ok HTTP/1.1 200 317 ms crawled 2026-05-08

NO · 185.226.149.25 · AS50304 Blix Solutions AS

Reputation 100/100

Classifying

HTML metadata

Title
Secure and Private Email Hosting Services by Runbox
Description
Fast, secure, and sustainable email services provided by email professionals. Powerful Email and Domain Hosting for businesses and organizations.

Technology

Server
nginx
CMS
WordPress

Social

Registration

Registrar
eNom, LLC
Created
1999-08-10
Expires
2026-08-10 82 days left
Updated
2025-07-12
Name servers
  • dns61.copyleft.no
  • dns62.copyleft.no
  • dns63.copyleft.no

DNS records live

NS
  • dns61.copyleft.no
  • dns62.copyleft.no
  • dns63.copyleft.no
MX
  • 10 mx.runbox.com
TXT
  • google-site-verification=fcQSXdsUMQ8FBKgOgrsTP2TvSnXN974zsfz5J63wQVg

Email authentication strong

SPF
v=spf1 include:spf.runbox.com -all
strict (-all)
DMARC
v=DMARC1; p=quarantine; pct=100; rua=mailto:dmarc@runbox.com
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnZcXum80amNAtUQaBTDPVbj14edZs6jLlfYJmQdV8+7PqI4N/VRD4X82A/1dMyvoeMCR9Ecd+SoXK…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/P7Btrlp0Y0l9jlBPwkMrB3pvKyYtkL5/aMlItjPD2GpKe5daJYiFbFDsJKu6ugqCFN5Cl8AhyrHS…
selectors probed

Certificate (current)

Buypass Class 3 CA 2
from 2025-04-28 to 2026-05-26
Expires in 7 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://runbox.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-src blob: https://runbox.com https://js.stripe.com https://hcaptcha.com https://*.hcaptcha.com https://video.runbox.com/; script-src https://runbox.com https://support.runbox.com/ https://video.runbox.com/ https://js.stripe.com https://hcaptcha.com https://*.hcaptcha.com https://assets.hcaptcha.com 'unsafe-inline' 'unsafe-eval'; object-src https://runbox.com; img-src 'self' data: https://* http://*; media-src 'self'; child-src https://runbox.com blob:; font-src 'self'; connect-src 'self' wss://runbox.com https://sentry.runbox.com https://video.runbox.com/ https://js.stripe.com https://gravatar.com https://hcaptcha.com https://*.hcaptcha.com; style-src 'self' https://hcaptcha.com https://*.hcaptcha.com 'unsafe-inline'
strict-transport-security
max-age=63072000; preload

Links to (4)