indexo.dev

sps.gov.uk

.uk crawl

First seen 2026-06-02 · Last seen 2026-06-02 · ok HTTP/1.1 200 733 ms crawled 2026-06-02

US · 172.66.157.239 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home Page | Scottish Prison Service
Description
We are responsible for the secure custody of around 8,000 people across Scotland. We employ approximately 5,000 staff across our prisons, headquarters, college, and training and central stores facility.
Language
en-gb
Canonical
https://www.sps.gov.uk/

Open Graph

url
https://www.sps.gov.uk/node/12
title
Home Page | Scottish Prison Service
image:url
https://www.sps.gov.uk/themes/sps/build/images/sps-share.jpg
site name
Scottish Prison Service
description
We are responsible for the secure custody of around 8,000 people across Scotland. We employ approximately 5,000 staff across our prisons, headquarters, college, and training and central stores facility.

Technology

CDN
Cloudflare
CMS
Drupal
Analytics
  • Cloudflare Insights
Fonts
  • Adobe Fonts

Third-party hosts loaded (3)

  • use.typekit.net×2
  • p.typekit.net×1
  • static.cloudflareinsights.com×1

Social

DNS records live

NS
  • dean.ns.cloudflare.com
  • naya.ns.cloudflare.com
MX
  • 10 gaolkeeper.sps.gov.uk
  • 100 relay-1.mail.demon.net
  • 100 relay-2.mail.demon.net
TXT
Show 7 TXT records
  • QN3PzpxNe3Km5XK49BnUmR8dsNFSg572l8Vo1qDGqy2SkyRrMNSG++WZaaVuZrIrup2r6m2iDzr/TXirblkdiQ==
  • _0ns1dl7367bacwp2bpo0z228f52bz7t
  • _9ilida6as9n2w6fvj66dec5y8wasl6j
  • _ljrdnwgakjzraa000lyi3xoklcwld0x
  • c7vrww1bb1y69fqqwy449tbqtnt1m3tx
  • hqh1m1dtsw4gg12bpcxz3gr32gqy14xk
  • 6t8r4bpm6q1dl7m08xb10t5wnx8l45fv
Verified for
  • Brevo
  • Microsoft 365

Email authentication weak

SPF
not published
DMARC
v=DMARC1; p=none; rua=mailto:9b7d5f0d7b03467a81774de9fe1f1641@dmarc-reports.cloudflare.net
policy: none (monitoring only)
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

WE1
from 2026-05-09 to 2026-08-07
Expires in 64 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.sps.gov.uk/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'self' maps.googleapis.com unpkg.com *.clarity.ms static.cloudflareinsights.com tagmanager.google.com *.googletagmanager.com rum-static.pingdom.net *.gstatic.com/recaptcha/ *.google.com/recaptcha/ sibforms.com cc.cdn.civiccomputing.com ajax.cloudflare.com www.googletagmanager.com *.google-analytics.com *.analytics.google.com; img-src 'self' data: maps.googleapis.com maps.gstatic.com *.clarity.ms *.google-analytics.com *.analytics.google.com *.googletagmanager.com ssl.gstatic.com www.gstatic.com validator.swagger.io www.googletagmanager.com; style-src 'unsafe-inline' 'self' *.typekit.net tagmanager.google.com sibforms.com fonts.googleapis.com; connect-src 'self' maps.googleapis.com *.google-analytics.com *.analytics.google.com *.clarity.ms *.googletagmanager.com rum-collector-2.pingdom.net stats.g.doubleclick.net dec93337.sibforms.com apikeys.civiccomputing.com; frame-src 'self' player.vimeo.com www.google.com maps.google.com www.youtube-nocookie.com; font-src 'self' *.typek
strict-transport-security
max-age=15552000; includeSubDomains; preload

Links to (5)

Linked from (1)