thayn.me
HTML metadata
Technology
- CDN
- Netlify
- Fonts
-
- Google Fonts
Third-party hosts loaded (12)
- cdn.jsdelivr.net×2
- fonts.googleapis.com×2
- webmention.io×2
- beta.musicbrainz.org×1
- bsky.app×1
- en.pronouns.page×1
- fonts.gstatic.com×1
- github.com×1
- tech.lgbt×1
- www.discogs.com×1
- www.instagram.com×1
- www.last.fm×1
Social
DNS records live
- NS
-
- dns1.p06.nsone.net
- dns2.p06.nsone.net
- dns3.p06.nsone.net
- dns4.p06.nsone.net
- MX
-
- 10 mx01.mail.icloud.com
- 10 mx02.mail.icloud.com
- TXT
-
google-site-verification=QcmXnzaeL0EdnqGSRtwSQfValyf71tAXmHA0XWef2z0apple-domain=ypwdyxZeUnqgqrwj
Email authentication weak
- SPF
-
v=spf1 include:icloud.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
E7
Expires in 56 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
default-src 'self'; base-uri 'self'; frame-ancestors 'none'; object-src 'none'; script-src 'self'; style-src 'self' https://cdn.jsdelivr.net https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' https://cdn.jsdelivr.net https://fonts.gstatic.com; connect-src 'self' https:; frame-src 'self' https:;- strict-transport-security
max-age=31536000; includeSubDomains; preload