indexo.dev

socialbnb.org

.org crawl

First seen 2026-05-23 · Last seen 2026-06-02 · ok HTTP/1.1 200 1613 ms crawled 2026-05-28

DE · 217.160.0.221 · AS8560 IONOS SE

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Explore meaningful travel experiences worldwide
Description
Discover unique experiences and accommodations that support local projects, communities, and ecosystems.
Language
en
Canonical
https://socialbnb.org/en/
Translations
  • de
  • en

Open Graph

url
https://socialbnb.org/en/
title
Explore meaningful travel experiences worldwide
locale
en_US
site name
socialbnb
description
Discover unique experiences and accommodations that support local projects, communities, and ecosystems.

Technology

Server
Heroku
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (10)
  • res.cloudinary.com×80
  • assets-sharetribecom.sharetribe.com×4
  • sharetribe-assets.imgix.net×3
  • api.mapbox.com×2
  • cdn.jsdelivr.net×2
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • js.hs-scripts.com×1
  • maps.googleapis.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Registrar
IONOS SE
Created
2017-04-18
Expires
2027-04-18 318 days left
Updated
2026-04-18
Name servers
  • ns1056.ui-dns.org
  • ns1016.ui-dns.com
  • ns1075.ui-dns.biz
  • ns1095.ui-dns.de

DNS records live

NS
  • ns1016.ui-dns.com
  • ns1056.ui-dns.org
  • ns1075.ui-dns.biz
  • ns1095.ui-dns.de
MX
  • 10 mx00.ionos.de
  • 10 mx01.ionos.de
TXT
  • v=DMARC1;p=reject;pct=100;rua=mailto:info@socialbnb.de
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:_spf-eu.ionos.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-01-24 to 2027-01-25
Expires in 235 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.socialbnb.org/en/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
  • cross-origin-resource-policy
findings
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
report-uri /csp-report;base-uri 'self';default-src 'self';child-src blob:;connect-src 'self' https://flex-api.sharetribe.com *.jsdelivr.net *.st-api.com maps.googleapis.com https://www.google.com *.tiles.mapbox.com api.mapbox.com events.mapbox.com https://tagassistant.google.com https://googletagmanager.com https://ssl.google-analytics.com https://api-free.deepl.com/v2/translate https://tracker-shield.funnelytics.workers.dev https://track-v3.funnelytics.io https://cdn.funnelytics.io *.youtube.com www.youtube.com *.hubspot.com api.hubspot.com *.paypal.com https://assets.calendly.com/ assets.calendly.com/ https://host.socialbnb.org/ *.calendly.com *.google-analytics.com www.paypalobjects.com *.paypalobjects.com fonts.googleapis.com stats.g.doubleclick.net googleads.g.doubleclick.net *.googleadservices.com www.googleadservices.com sentry.io *.stripe.com *.revolut.com merchant.revolut.com sandbox-merchant.revolut.com checkout.revolut.com https://js.hsleadflows.net https://forms.hsforms.com
strict-transport-security
max-age=15552000; includeSubDomains
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-resource-policy
same-origin

Links to (16)

Linked from (2)