sanleandro.org

.org crawl

First seen 2026-04-14 · Last seen 2026-05-11 · ok HTTP/1.1 200 1698 ms crawled 2026-05-08

US · 20.114.211.29 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title: San Leandro, CA | Official Website
Language: en

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (3)

www.googletagmanager.com×4
docaccess.com×1
static.klaviyo.com×1

Registration

Registrar

GoDaddy.com, LLC

Created

1996-06-28

Expires

2027-06-27 404 days left

Updated

2024-07-27

Name servers

sierra.ns.cloudflare.com
zeus.ns.cloudflare.com

DNS records live

NS

sierra.ns.cloudflare.com
zeus.ns.cloudflare.com

MX

1 sanleandro-org.mail.protection.outlook.com

TXT

Show 12 TXT records

k=rsa; p= MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApguTrO8jU4COfp+nhSLxipw8NgOFdN1FYc/kU8MuI9ASYZ/eXGEtiBTgiIUhw1LnjvRFerUu21tyQTpIyRtPR5GX4tV+tBZK8eMfiQE2lh5UrA2IPFvw674tuMHN2FTpozFig3/HwNrsTurouNsFfmLREtY00IzBm3V5oWfjbJnp8w75Hb20RSwKq C9APiKOrMMNvcKYa5Gj0jkA9umAz+WQafNp62fYVHYhpUEeCbb/eR/Wws2LEATrV7phFBHLR73THJUbjM6HMMtfDdtG3/moFYQWHyj9couuU4KZYRoiGDPPwR8j9l/wP7+M/ei/rPhfYdhBdyoDpoIaBi97UwIDAQAB
f8871t0nkjp2mktns71r0mm7nl
1password-site-verification=CTV36RP6ARFCPAYFGJDREV5VEU
docusign=e6287302-9637-4625-986f-4a257a7c1657
google-gws-recovery-domain-verification=68986279
apple-domain-verification=YZwLwfQKAOCxSP8z
google-site-verification=3GKzWulElJqSMXdwwDrb9ik8Zu3qUTKfGE9dL2DsZoA
google-site-verification=HDFolNIdSckRfgGeFhgsLAsFJR6JfgopheAnAu75RG4
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDVvc7a+nkx6+0gv0RB4xuPKWHlmfa+xSLjPy2V184ADu5sa2tmI5qbBVPPkjAO/8JlHEg/DFbTJI/5m0KKTW0BJ3Ram81UNnSle1hmcsorIxSfkJNRmBjtwWolGp/kuza/njLqSkuZ87yGb5gTiZqD7PoqIfACzeWkw03VeqpFMQIDAQAB
klaviyo-site-verification=SyCBDv
ZOOM_verify_dWq9AgCmS1icNwYx31XR5g
t43arowZ3gelQzn1GRT+5vJUGGcQxHrGf9+KyAaHLwZuYi+4A/GvqEUe1PZSDtGvPulb7WfTj6J9WRsQhtU/xQ=="

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:_spf.psm.knowbe4.com include:_spf.emailcampaigns.net include:spf.mailjet.com include:mailgun.org ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:7b14618e9f444882a06197ebd0a7e292@dmarc-reports.cloudflare.net; pct=100

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5/NEi0B8MizPZbEXnk/6KTzVDUDdHzE/EI6asCHoBRkY7958nsmnx+yPAfXJYBaRgMwZPtwNNFaqmi…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/EQltoKMJL6hi1Hqc3aFrqmPnVpEgRP6kOHTEnY6ZKY/lJXXzVrHgix8ujnAhR0Y1NH0K0C9aAclH1F8rYw…

selectors probed

Certificate (current)

R12

from 2026-03-24 to 2026-06-22

Expires in 34 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.sanleandro.org/

present

content-security-policy
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *

Links to (9)

Linked from (2)

sanleandronext.com×2
sanleandropoa.com×2