setf.com
HTML metadata
Technology
- CDN
- Azure Front Door
- Analytics
-
- Google Tag Manager
- Fonts
-
- Adobe Fonts
Third-party hosts loaded (4)
- cdn.evgnet.com×1
- resources.digital-cloud-west.medallia.com×1
- use.typekit.net×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- CSC Corporate Domains, Inc.
- Created
- 1998-10-01
- Expires
- 2026-09-30 133 days left
- Updated
- 2025-09-26
- Name servers
-
- udns1.cscdns.net
- udns2.cscdns.uk
DNS records live
- NS
-
- udns1.cscdns.net
- udns2.cscdns.uk
- MX
-
- 0 setf-com.mail.protection.outlook.com
- TXT
-
Show 15 TXT records
globalsign-domain-verification=DD5324663C8ADB308CD9E925A3D87CCEgoogle-site-verification=Z8L5snBH7n9ryM3g-UBROVxI10uaG2EYHQQMulbuUyMMS=ms394937533f5cdb28b5064aa6b4954ff0f6711340lucid-verification=bnt86WZqhqQ79B2WW3tidocusign=34d1e7bb-2ea5-4c50-8dd4-dfd1c7cdd345docusign=ed219cbe-b2be-49bf-b569-070e55a4e41aopenai-domain-verification=dv-cE7I3nj9P1JL91PoUdp1Moneknowbe4-site-verification=cdc558c2d00e2b9cdf4673657c2f7a9canthropic-domain-verification-m84623=43s46nXmD6FOJiQUQ9oixze57globalsign-domain-verification=0d41a4288cfa49ae419e06d849f88a8cglobalsign-domain-verification=156ED7989349026A61CD75BEB7F3134Eglobalsign-domain-verification=331E73777EC2956D3B9E932BD7F5CD2Fglobalsign-domain-verification=3E5E04A9E2E8FFC1476B8FF59803098Bglobalsign-domain-verification=96E57A70A41B1C81A34C0E74576E1E55
Email authentication strong
- SPF
-
v=spf1 ip4:50.56.45.176/29 ip4:50.56.136.120/30 ip4:72.32.35.252/31 include:jmfamily.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc_rua@jmfamily.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com,mailto:dmarc_ruf@jmfamily.compolicy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxinYifQFDSSw5mfIDy/PtZ9r2wba0B4NV2tu9hU4b2+2sBQObz/v9k4348yof8vBAt7Q+dy2HySNPe… - s1:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJO6ckbVx9hIdNYX4/qAk08w1qw5uCy8gSiASn7VNFhCkQUNX34fcbNs3vr4sBXMhaLpLzvh+V9btI49aMl1bvax… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDxEPpVbN/+GtQbNQdUX37QaHlzesz9Oit0HfOq2jlhfrzxhEgjU3pm4nPxnNSGC+dZRdZE2ndncJZY055+K2uLVq…
selectors probed - selector1:
Certificate (current)
GlobalSign Atlas R46 DV TLS CA 2026 Q2
Expires in 84 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://apps.sitecore.net *.widen.net *.widencdn.net;; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googletagmanager.com *.google-analytics.com *.google.com *.evgnet.com *.billmatrix.com *.idoxs.net *.clarity.ms *.cloudfront.net *.marker.io *.jquery.com *.kampyle.com *.medallia.com *.force.com *.salesforceliveagent.com *.salesforce.com *.my.site.com *.my.salesforce.com https://unpkg.com *.jsdelivr.net;; connect-src 'self' *.google.com *.googletagmanager.com *.google-analytics.com *.evgnet.com *.billmatrix.com *.idoxs.net *.doubleclick.net *.luckyorange.net *.clarity.ms *.evergage.com *.kampyle.com *.medallia.com *.marker.io *.shippingapis.com *.jquery.com *.my.site.com *.my.salesforce.com *.my.salesforce-scrt.com;; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com *.typekit.net *.mapbox.com *.kampyle.com *.medallia.com *.force.com *.my.site.com *.my.salesforce.com *.jsdelivr.net *.evgnet.com *.idoxs.net;; font-src 'self' https://fonts.gstatic.com ht- strict-transport-security
max-age=31536000