sunnydaysent.com
HTML metadata
Technology
- Server
- Microsoft-IIS
- Fonts
-
- Google Fonts
Third-party hosts loaded (1)
- fonts.googleapis.com×1
Social
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2012-08-14
- Expires
- 2026-08-14 86 days left
- Updated
- 2024-08-15
- Name servers
-
- ns13.domaincontrol.com
- ns14.domaincontrol.com
DNS records live
- NS
-
- ns13.domaincontrol.com
- ns14.domaincontrol.com
- MX
-
- 10 us-smtp-inbound-1.mimecast.com
- 10 us-smtp-inbound-2.mimecast.com
- TXT
-
Show 5 TXT records
ar.sunnydaysent.comapple-domain-verification=8zqoBfsHKjWMmpJF_amazonses.sunnydaysent.comMS=ms879094570ed1fe018a476edc4e01ca481089391505b98167fb
Email authentication partial
- SPF
-
v=spf1 include:us._netblocks.mimecast.com include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:admin@sunnydaysent.compolicy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 60 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN, SAMEORIGIN- permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=*, usb=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';worker-src 'self' 'unsafe-inline' * blob:;- strict-transport-security
max-age=31536000; includeSubDomains