thecarmen.co.uk

.uk crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 2240 ms crawled 2026-06-01

GB · 35.189.122.196 · AS396982 Google LLC

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title

Homepage -

Language

en-GB

Canonical

https://thecarmen.co.uk/

Feeds

» Feed RSS

Open Graph

url: https://thecarmen.co.uk/
title: Homepage -
locale: en_GB
description: Welcome Welcome The Worshipful Company of Carmen is one of the 113 livery companies in the City of London and it dates back to 1517. Today it is one of the largest with over 600 members, who are committed to charitable generosity. The Carmen represent a wide range of aspects within the transport and logistics […]

Technology

Server: nginx
CMS: WordPress
jQuery: 3.7.1

Fonts

Google Fonts

Third-party hosts loaded (4)

thecarmen.wpengine.com×4
fonts.googleapis.com×2
js.stripe.com×2
stackpath.bootstrapcdn.com×1

Contact

Phone

0208 050 1311

DNS records live

NS

ns1.bdm.microsoftonline.com
ns2.bdm.microsoftonline.com
ns3.bdm.microsoftonline.com
ns4.bdm.microsoftonline.com

MX

0 thecarmen-co-uk.mail.protection.outlook.com

TXT

include:SPF.constantcontact.com
mscid=+rPQlGXnVPKc5Tw5hyxtF3NAiEr/Pobdrf+v7XpDc3NqQccdMI4EmhkdGXLD0cye9qfnptTxMO10SP3nn1jLrA==

Verified for

Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraC3ynhmbQMskxsQw0tnXfMfxyEv7OhVF9685sXkP00Lq/n+GF8vo4Bm6kz/Swnee7HwlfPDosxaVP…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdO+t/AKF8WFIcez0Uqkt9hromUp3mmV2SV8haVH4wCvrDxU3FWc43SVEOLfI8lVQ4G8LGtL9g91rIdoGA…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUJ7AMCCtTfOphRPp8ViIK/GE58lI3EwQiHykI59tf8aJl5lclvuapqRQTWhF44Vk3BydjSXmu4Jwx4SJ0…

selectors probed

Certificate (current)

R13

from 2026-04-28 to 2026-07-27

Expires in 52 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://thecarmen.co.uk/

present

permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (2)

service.gov.uk×1
cityoflondon.gov.uk×1

Linked from (1)

rwconsulting.uk×1