indexo.dev

thoroughlygood.me

.me crawl

First seen 2026-05-09 · Last seen 2026-05-15 · ok HTTP/1.1 200 3317 ms crawled 2026-05-15

US · 160.153.0.33 · AS209242 Cloudflare London, LLC

Reputation 95/100 weak security headers

sector media news type blog

HTML metadata

Title
Thoroughly Good - Classical Music, Books, and TV
Description
Classical music, books, and TV: independent reviews, interviews and features that value curiosity, clarity, and connection.
Language
en-GB
Generator
WordPress 6.7.5
Canonical
https://blog.thoroughlygood.me/
Feeds

Open Graph

url
https://blog.thoroughlygood.me/
title
Thoroughly Good Homepage
locale
en_GB
site name
Thoroughly Good
description
Classical music, books, and TV: independent reviews, interviews and features that value curiosity, clarity, and connection.

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Ads
  • Amazon Ads
  • Criteo
  • Google AdSense
  • Google Ads (DoubleClick)
  • PubMatic
  • Xandr
Fonts
  • Google Fonts
Third-party hosts loaded (27)
  • i0.wp.com×24
  • c0.wp.com×10
  • public-api.wordpress.com×2
  • stats.wp.com×2
  • a.omappapi.com×1
  • aax.amazon-adsystem.com×1
  • ad.doubleclick.net×1
  • ads.pubmatic.com×1
  • bidder.criteo.com×1
  • cas.criteo.com×1
  • cdn.switchadhub.com×1
  • cdnjs.buymeacoffee.com×1
  • d3t3ozftmdmh3i.cloudfront.net×1
  • delivery.g.switchadhub.com×1
  • delivery.swid.switchadhub.com×1
  • fonts.googleapis.com×1
  • gads.pubmatic.com×1
  • googleads.g.doubleclick.net×1
  • gum.criteo.com×1
  • ib.adnxs.com×1
  • img1.wsimg.com×1
  • s.pubmine.com×1
  • static.criteo.net×1
  • tpc.googlesyndication.com×1
  • www.googletagmanager.com×1
  • www.googletagservices.com×1
  • x.bidswitch.net×1

Social

Contact

Address
rd April 2026

DNS records live

NS
  • ns63.domaincontrol.com
  • ns64.domaincontrol.com
MX
  • 0 smtp.secureserver.net
  • 10 mailstore1.secureserver.net
TXT
  • D5541196

Email authentication strong

SPF
v=spf1 include:secureserver.net -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:dmarc_rua@onsecureserver.net;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-06 to 2026-07-05
Expires in 46 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://blog.thoroughlygood.me/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (4)

Linked from (2)