suwa.org

HTML metadata

Technology

Server

nginx

CMS

WordPress

jQuery

3.7.1

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Social widgets

• YouTube Embed

Third-party hosts loaded (6)

• cdnjs.cloudflare.com×3
• fonts.googleapis.com×2
• gmpg.org×1
• static.addtoany.com×1
• www.googletagmanager.com×1
• www.youtube.com×1

Social

• facebook
• bluesky
• instagram
• youtube
• tiktok

Contact

Email

• info@suwa.org
• atinfo@suwa.org

Phone

• (801) 486-3161
• (202) 546-2215

DNS records live

NS

• ns73.domaincontrol.com
• ns74.domaincontrol.com

MX

• 0 suwa-org.mail.protection.outlook.com

TXT

• prowly-verification=9d7fd8a23f7eca1188b194398d5c4bc84479a8e928a8124f1a3d0713619efba1
• MS=E6856AC2A0752AE34902F6DF4A1575AFB7983CFD

Verified for

• Apple
• Google
• Meta
• Microsoft 365

Email authentication partial

SPF

v=spf1 a mx +include:outboundmail.convio.net +include:outboundmail.blackbaud.net include:_spf.google.com include:spf.protection.outlook.com include:spf.dynect.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; pct=100; rua=mailto:re+sf4mb8uzxrs@dmarc.postmarkapp.com; sp=none; aspf=r;

policy: none (monitoring only) · sp=none

DKIM

• google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyyu8k7Rn4wk9rSXe6ddqqekBwEVLVO/MPBIbSwo2TO4OpE/LXqMeHwbLWAAdPabaVdO/OA1uRc2tcqi5LHY…
• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRZq442VZN5DU4yjLuVVnOt35bD3Wlf3oRDrcGGQbImPkpOXN+4T5jFzmF6hffAjH7NNFEp0K7wthd…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://suwa.org/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• youtube.com×1
• youtu.be×1
• tiktok.com×1
• instagram.com×1
• facebook.com×1
• convio.net×1
• bsky.app×1

Linked from (1)

• sbbch.org×1