indexo.dev

tomlinsonestates.co.uk

.uk crawl

First seen 2026-04-26 · Last seen 2026-05-19 · ok HTTP/1.1 200 800 ms crawled 2026-05-19

GB · 138.68.184.58 · AS14061 DigitalOcean, LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Tomlinson Estates
Description
Established in the heart of the city over 20 years ago, Tomlinson Estates has grown from a family business to a leading local expert that brings excellence to the experience of all things property. We manage, rent and sell property all across this beautiful city including both the residential and student market. We also offer property investment and renovation services. We bring passion, attention to detail, integrity and transparency to ensure that the tenants, landlords and homes we work with all receive the care they deserve. We are accredited by ARLA, NAEA, Rightmove, The Property Ombudsman, and NULA. We are also active members of East Midlands Property Owners.
Canonical
https://tomlinsonestates.co.uk/

Technology

Server
nginx
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (5)

  • cdn1.gnbproperty.com×26
  • wcdn.website.gnbproperty.com×22
  • fonts.googleapis.com×2
  • www.googletagmanager.com×2
  • cdnweb.gnbproperty.com×1

Social

Contact

Phone

Registration

Registrar
Fasthosts Internet Ltd
Created
2008-11-20
Expires
2026-11-20 183 days left
Updated
2024-10-21
Name servers
  • adel.ns.cloudflare.com.
  • graham.ns.cloudflare.com.

DNS records live

NS
  • adel.ns.cloudflare.com
  • graham.ns.cloudflare.com
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com

Email authentication weak

SPF
v=spf1 include:_spf.google.com ~all
softfail (~all)
DMARC
not published
DKIM
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PScWOlc7pIkatkVwoXlfqVb9yTvLrzYtd93CCu3RK2/jlVjMmxdA/yOqsW6i9TZgp8FqT5QHs4LwEuCGW…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIMuvgJx/tdcGklKSEIecBAjG3Yfn8VVjEkqLZliyC3AHjvJhQnMsCauUNoLPE7hA7n/Hu5r2tDSfvgjpOONIL+1…
selectors probed

Certificate (current)

E7
from 2026-05-13 to 2026-08-11
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://tomlinsonestates.co.uk/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: *.googleapis.com *.googleusercontent.com *.gstatic.com *.google.com *.googletagmanager.com *.google-analytics.com; style-src 'self' 'unsafe-inline' https: *.googleapis.com *.gstatic.com; img-src 'self' data: blob: https: *.googleapis.com *.googleusercontent.com *.gstatic.com *.gnbproperty.com *.cloudinary.com res.cloudinary.com *.globalnoticeboard.com; font-src 'self' data: https: *.googleapis.com *.gstatic.com; media-src 'self' https: *.gnbproperty.com *.globalnoticeboard.com; frame-src *; connect-src 'self' https: wss://cs.visitor.chat:8080 *.google-analytics.com *.googletagmanager.com;

Links to (13)

Linked from (2)