sirjohnfisherfoundation.org.uk

.uk crawl

First seen 2026-05-09 · Last seen 2026-05-09 · ok HTTP/1.1 200 1001 ms crawled 2026-05-15

US · 104.21.69.233 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title

Sir John Fisher Foundation – Charitable Trust

Language

en-US

Generator

WordPress 6.9.4

Canonical

https://sirjohnfisherfoundation.org.uk/

Feeds

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Google Tag Manager

Third-party hosts loaded (3)

www.google.com×2
www.googletagmanager.com×2
gmpg.org×1

Contact

Phone

+447918649601

DNS records live

NS

charles.ns.cloudflare.com
isabel.ns.cloudflare.com

MX

0 sirjohnfisherfoundation-org-uk.mail.protection.outlook.com

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:spf.UK.exclaimer.net +include:_spf.salesforce.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:salesforce@issimo.co.uk

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDriZ2VEM/2F8qQGw/IZ2qy4dQCrD2ZUZTrOBWGJKyLRuSn0qXqtyWzkutZ0829It8dN59m2kMBEheenzlgw4…

selectors probed

Certificate (current)

WE1

from 2026-04-24 to 2026-07-23

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://sirjohnfisherfoundation.org.uk/

present

permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (1)

ben-yates.co.uk×1

Linked from (1)

walneycommunitytrust.org×1