indexo.dev

southernukulelestore.co.uk

.uk crawl

First seen 2026-05-22 · Last seen 2026-05-28 · ok HTTP/1.1 200 9827 ms crawled 2026-05-28

GB · 78.129.225.42 · AS20860 Iomart Cloud Services Limited

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Ukuleles for Sale, Best Online Ukes Shop UK | Southern Ukulele Store
Description
We're passionate about Ukuleles & with over 1,000 in stock from £45 to £3000 we can help find the right ukulele for you, whether you're a starter or expert.
Language
en

Technology

Server
Apache
CMS
Gatsby
PHP
8.2.11 security-only
Stack
PHP
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Social widgets
  • YouTube Embed

Third-party hosts loaded (5)

  • cdnjs.cloudflare.com×1
  • fonts.googleapis.com×1
  • widget.trustpilot.com×1
  • www.googletagmanager.com×1
  • www.youtube.com×1

Social

Contact

Phone

DNS records live

NS
  • ns19.domaincontrol.com
  • ns20.domaincontrol.com
MX
  • 0 southernukulelestore-co-uk.mail.protection.outlook.com
TXT
  • p0p46lc34xh4q98hs9h1ydhy5zsmjn0r
  • NETORGFT11516249.onmicrosoft.com

Email authentication weak

SPF
v=spf1 include:secureserver.net -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

GeoTrust TLS RSA CA G1
from 2025-12-09 to 2027-01-01
Expires in 210 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.southernukulelestore.co.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' *.google.com *.google.co.uk; block-all-mixed-content; default-src 'self' *.justapplications.co.uk *.southernukulelestore.co.uk; child-src 'self'; connect-src 'self' *.ampproject.org *.algolianet.com *.algolia.net *.google-analytics.com *.yoast.com *.doubleclick.net *.google.com https://connect.facebook.net *.facebook.com *.braintree-api.com *.braintreegateway.com *.paypal.com *.bitbucket.org *.adroll.com *.consensu.org ; script-src 'unsafe-eval' 'unsafe-inline' 'self' *.stripe.com https://chimpstatic.com/ *.sagepay.com *.trustpilot.com *.algolianet.com *.algolia.net *.kaspersky-labs.com *.cookiebot.com *.ampproject.org *.wp.com *.googletagmanager.com *.smartlook.com *.facebook.com *.consensu.org *.adroll.com *.braintreegateway.com *.gstatic.com *.google.com *.paypal.com *.adobedtm.com *.trustpilot.com *.paypalobjects.com *.google-analytics.com *.widgets.magentocommerce.com *.vimeocdn.com *.ytimg.com *.nextroll.com *.googleadservices.com *.cloudfront.net *.youtube
strict-transport-security
max-age=31536000; includeSubdomains; preload

Links to (7)

Linked from (1)