saffronbs.co.uk

.uk crawl

First seen 2026-04-22 · Last seen 2026-05-18 · ok HTTP/1.1 200 2406 ms crawled 2026-05-15

GB · 185.39.248.17 · AS59933 Sensical Services Limited

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Welcome to Saffron Building Society
Description: Welcome to Saffron Building Society
Language: en
Generator: Drupal 10 (https://www.drupal.org)
Canonical: https://www.saffronbs.co.uk/

Technology

Server: Apache
CMS: Drupal

Analytics

Google Tag Manager

Third-party hosts loaded (4)

cdn-cookieyes.com×1
saffron10.whoson.com×1
smartmoneypeople.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

Sensical Services Ltd t/a Sensical

Created

2003-03-10

Expires

2027-03-10 294 days left

Updated

2025-01-24

Name servers

ns4.sensical.net.
ns5.sensical.net.
ns6.sensical.net.

DNS records live

NS

ns4.sensical.net
ns5.sensical.net
ns6.sensical.net

MX

0 smtp1.saffronbs.co.uk
0 smtp2.saffronbs.co.uk

TXT

Show 9 TXT records

MS=ms38219245
319abe21a1f49e7ea96ef09f4a79546250dae3ca8c59c0e359
ms-domain-verification=d560afba-c79b-4150-9a04-43578927065b
apple-domain-verification=OuqKjuxCpJjSG4m8
google-site-verification=vAihSbyPqKt3GyDZPEy2xpW1Zt5sW8P7qYqM2zFznAY
access-domain-verification=7a8aec29fe03ef9bbbad27edbf51af3889a66ce43a1ea8fdcbbfc2329f6ba538
H1SWsA8JViSu3MDfaO6zuF7PRtKFKW0BLbq1Mttsh2XGl2Xok9U5WsCdFqAAjupMY/w/sSqRiuUr/miPCxMjrg==
google-site-verification=FCKdXObkOQc08Z6Ja7ReUqNOfBTrDhAuAwttgt-5AMQ
0 saffronbs-co-uk.mail.protection.outlook.com.

Email authentication partial

SPF

v=spf1 ip4:5.102.86.224/27 ip4:185.39.248.224/27 ip4:185.39.248.16/29 include:spf.protection.outlook.com ip4:82.33.221.20 include:spf2.accessacloud.com include:mailgun.org -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:saffronbs@rua.netcraft.com; ruf=mailto:saffronbs@ruf.netcraft.com;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA EV R36

from 2025-07-03 to 2026-07-04

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.saffronbs.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' 'unsafe-inline' data:; style-src 'self' 'unsafe-inline' fonts.googleapis.com maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css saffron.whoson.com saffron10.whoson.com; font-src 'self' fonts.gstatic.com maxcdn.bootstrapcdn.com saffron10.whoson.com; frame-src 'self' saffron.whoson.com saffron10.whoson.com smartmoneypeople.com td.doubleclick.net www.google.com www.googletagmanager.com; img-src 'self' data: cdn-cookieyes.com placehold.it/180x50 px.ads.linkedin.com saffron.whoson.com saffron10.whoson.com tracking.audio.thisisdax.com via.placeholder.com/180x50 www.facebook.com www.google.co.uk www.google.com www.google-analytics.com www.googletagmanager.com www.placeholder.com/180x50; media-src 'self'; object-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' cdn-cookieyes.com connect.facebook.net googleads.g.doubleclick.net saffron.whoson.com saffron10.whoson.com script.hotjar.com snap.licdn.com/li.lms-analytics/ static.hotjar.com www.google.com
strict-transport-security: max-age=63072000