signatura.co
signatura.co
HTML metadata
Technology
- CDN
- Vercel
Third-party hosts loaded (1)
- app.enzuzo.com×1
Contact
DNS records live
- NS
-
- ns-1230.awsdns-25.org
- ns-1686.awsdns-18.co.uk
- ns-453.awsdns-56.com
- ns-590.awsdns-09.net
- MX
-
- 1 aspmx.l.google.com
- 10 aspmx2.googlemail.com
- 10 aspmx3.googlemail.com
- 5 alt1.aspmx.l.google.com
- 5 alt2.aspmx.l.google.com
- Verified for
-
Email authentication strong
- SPF
-
v=spf1 include:_spf.google.com include:amazonses.com include:_spf.odoo.com ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=quarantine;pct=100;rua=mailto:dmarc-reports@signatura.co;ruf=mailto:dmarc-reports@signatura.co;sp=quarantine;aspf=r;policy: quarantine · sp=quarantine - DKIM
-
- google:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDHhkJHxiBVqae7Z+L3q4nBvtshL08TE1DdFmhvbBa0v1tBSgmC+mE2zR/1V+a0IFaGcLRAFKjqxvQV3GnScP…
selectors probed - google:
Certificate (current)
R12
Expires in 86 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
base-uri 'self'; default-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://*.pipedrive.com https://*.pipedriveassets.com https://app.enzuzo.com https://status.signatura.co https://vercel.live wss://ws-us3.pusher.com https://cdn.mxpnl.com https://*.mixpanel.com;- strict-transport-security
max-age=31536000; includeSubDomains; preload