indexo.dev

sfstandard.com

.com crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 4674 ms crawled 2026-05-18

US · 172.67.128.101 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
The San Francisco Standard
Description
The San Francisco Bay Area's essential source for daily news, politics, business, food, tech and culture coverage.
Language
en
Canonical
https://sfstandard.com/
Feeds

Open Graph

url
https://sfstandard.com/
title
The San Francisco Standard
description
The San Francisco Bay Area's essential source for daily news, politics, business, food, tech and culture coverage.

Technology

CDN
Cloudflare
CMS
Next.js
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • use.typekit.net×1
  • www.googletagmanager.com×1

Social

Registration

Registrar
NameCheap, Inc.
Created
2021-09-28
Expires
2026-09-28 132 days left
Updated
2025-08-29
Name servers
  • mallory.ns.cloudflare.com
  • yevgen.ns.cloudflare.com

DNS records live

NS
  • mallory.ns.cloudflare.com
  • yevgen.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 aspmx2.googlemail.com
  • 10 aspmx3.googlemail.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
TXT
Show 17 TXT records
  • ahrefs-site-verification_1c1d0eec23ee40d6b3e59dff8b33a7a913b110bc4c6c385ff38aaf5b8fe31cc7
  • google-site-verification=0BuGAbKZoKRK3Owe3sh8_B1qH9YnTnVJlkiVyT1boiM
  • MS=ms43885079
  • google-site-verification=Pxn4qRIMXM3NXWJJXMKa6_EDUEXUJ45KnYlamLRcmCc
  • google-site-verification=9D2VzJi-QCek9CtqC2XV8G4VYkTiiDYYTmkM5152ad8
  • pinterest-site-verification=1964e905158ee0ffd372e5673f148ac2
  • notion_verify_=!z295)*!uhnie~c!endpC=1#gkr>KJ*}Ric_zRX?Q=sd0)3bU}xPF6YsXvaEjt4kdwrtK
  • google-site-verification=1xVm4uNV23SgRVvgt4bwS-A7pGcIve2Rwo26KL0T3jA
  • google-site-verification=qezXaWCJMkXCTKU_xNS8KaaWIHYVtloekclZDOJ2ESQ
  • facebook-domain-verification=abuf0xngyzhww7zmaef6xe1atzvx53
  • 87C502C096
  • yahoo-verification-key=v6WYOlBzGhr+nRuYh5Ux6HURBU3YpmwgqG7aHhofZSM=
  • slack-domain-verification=3wB5AQfDRc3r5DurPNJwj1jlR6AzVnkqQ8IsS0IN
  • mandrill_verify.X-TPgbXKBFW6x5Dv_b_z-w
  • google-site-verification=LVwhpXLCryK-Yy4OCYDSDeeip1XDlvEyQawgWsnTIj4
  • google-site-verification=LuXO9JGZVtuH30IPKrzUwunvwrKW5AknV_6jb5hAJTs
  • 1password-site-verification=SOYKTYJWEJBMNOJPQXYKXQ7KDA

Email authentication strong

SPF
v=spf1 ip4:51.81.221.9 include:aspmx.sailthru.com include:servers.mcsv.net include:spf.mandrillapp.com include:_spf.google.com include:mail.zendesk.com ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:790c4d8bd75b4741a82420ad7aca2f12@dmarc-reports.cloudflare.net,mailto:dev-dmarc@sfstandard.com,mailto:dmarc_agg@vali.email; ruf=mailto:dev-dmarc@sfstandard.com; rf=afrf; sp=quarantine; fo=1; adkim=r; aspf=r
policy: quarantine · sp=quarantine
DKIM
Show 5 DKIM selectors
  • default: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzSavD4fySbiZXr9ItVR/vknWp2RME+VYFdICAA0WmFsyQ70Wr3A7h2Ipix5YYcEw22SnlTqjFhnehPGl8+oI…
  • google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlJgvcqVq2b4XaJP72uq1JbpqArLjPjLgQPGbDn4W4we/vc242Ko7AkCRjyNyLpwz8RGZZiFkkKUFke…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2pfQ1Lqyaf0H1lYVPP+lGqUXqcY3YIPwPpvau/CtD1w2VlglCSqJP4ivCduLZUbBW6NWfI0mz4pYVT5hH2…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxcwTDuEkEcfXZATV1nsBnOfsnBYE3w6hKWuuEI0l2c4uW9gPo90e0HVMwSPoKSjqjX4ynTqgaCmlJDzS7…
selectors probed

Certificate (current)

WE1
from 2026-04-01 to 2026-06-30
Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://sfstandard.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' *.sfstandard.com sfstandard.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: http://ad.broadstreetads.com http://*.broadstreetads.com localhost:5001; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' https: http://ad.broadstreetads.com http://*.broadstreetads.com localhost:5001; style-src 'self' 'unsafe-inline' *.sfstandard.com sfstandard.com localhost:5001 fonts.googleapis.com *.ttwstatic.com embed.typeform.com opinionstage.com *.opinionstage.com tiktokcdn-us.com *.tiktokcdn-us.com ketchcdn.com *.ketchcdn.com ketchjs.com *.ketchjs.com *.trackjs.com coral.sfstandard.app s3.amazonaws.com stripe.com *.stripe.com *.cloudflare.com yo.com use.typekit.net p.typekit.net cdn.broadstreetads.com; img-src 'self' data: https:; font-src 'self' data: *.sfstandard.com sfstandard.com fonts.gstatic.com use.typekit.net s3.amazonaws.com coral.sfstandard.app stripe.com *.stripe.com *.cloudflare.com yo.com cdn.broadstreetads.com routle-sf-standard.vercel.app; connect-src 's
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (8)

Linked from (19)