indexo.dev

sothebyswine.com

.com crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 3574 ms crawled 2026-06-01

AU · 52.62.184.245 · AS16509 Amazon.com, Inc.

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title
Sotheby's Wine
Description
Sotheby’s Wine offers a selection of the world’s best wines, through both retail and auction. Our retail businesses, located in New York and Hong Kong, carry a fine selection of wines, made by only the top producers, in the best vintages, across all price points. Auctions are held in Hong Kong, New York, and London.

Technology

CDN
Amazon CloudFront
Server
Apache
jQuery
3.3.1 known XSS (<3.5)
Fonts
  • Adobe Fonts

Third-party hosts loaded (2)

  • cloud.typography.com×1
  • use.typekit.net×1

Registration

Registrar
Amazon Registrar, Inc.
Created
2009-08-04
Expires
2027-08-04 427 days left
Updated
2026-05-16
Name servers
  • ns-1232.awsdns-26.org
  • ns-1983.awsdns-55.co.uk
  • ns-37.awsdns-04.com
  • ns-759.awsdns-30.net

DNS records live

NS
  • ns-1232.awsdns-26.org
  • ns-1983.awsdns-55.co.uk
  • ns-37.awsdns-04.com
  • ns-759.awsdns-30.net
MX
  • 10 us-smtp-inbound-1.mimecast.com
  • 10 us-smtp-inbound-2.mimecast.com
Verified for
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a mx ip4:63.105.171.40 ip4:63.105.171.41 -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:04781a9dd336851@rep.dmarcanalyzer.com; ruf=mailto:04781a9dd336851@for.dmarcanalyzer.com; fo=1;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current) wrong cert

DigiCert TLS RSA SHA256 2020 CA1
from 2022-07-25 to 2023-07-26
Expired 1043 days ago

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.sothebyswine.com/landing

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
DENY
permissions-policy
"geolocation=(), microphone=(), camera=(), payment=()" always;
x-content-type-options
nosniff
content-security-policy
default-src * data: blob: filesystem: about: ws: wss:; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; img-src * data: blob:; connect-src *; frame-src *; object-src *; frame-ancestors *; upgrade-insecure-requests;
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (1)

Linked from (1)