tsaweb.org

HTML metadata

Title: Technology Student Association
Language: en
Generator: Sitefinity 15.1.8322.0 DX
Canonical: https://tsaweb.org

Open Graph

url: https://tsaweb.org/home
title: Technology Student Association
site name: Technology Student Association

Technology

Server: Microsoft-IIS

Fonts

Google Fonts

Third-party hosts loaded (3)

fonts.googleapis.com×2
cdn.jsdelivr.net×1
fonts.gstatic.com×1

Contact

Email

general@tsaweb.org

Phone

Registration

Registrar

Network Solutions, LLC

Created

1998-12-11

Expires

2028-12-10 935 days left

Updated

2025-10-20

Name servers

ns79.worldnic.com
ns80.worldnic.com

DNS records live

NS

ns79.worldnic.com
ns80.worldnic.com

MX

0 tsaweb-org.mail.protection.outlook.com

TXT

MS=ms45183267

Email authentication strong

SPF

v=spf1 a mx ptr ip4:72.27.230.66 ip4:146.82.86.212 ip4:146.82.86.213  ip4:146.82.86.213 ip4:64.50.139.191 ip4:208.75.123.0/24 ip4:23.239.13.15 ip6:2600:3c03::f03c:91ff:fec8:a5c ip4:45.79.177.69 include:spf.protection.outlook.com include:m.msgbman.com include:messagereach.com include:spf.cphosts.net ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine;

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCiDRWV34HWlxYsmb+xInm1U2b0keTVvwDTfAbii82WYUpUOc8GxJrDKkjQvkOw1FcWGAztwM9jWq2OLsQSqL…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-09-07 to 2026-10-09

Expires in 143 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://tsaweb.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(self), ambient-light-sensor=(self), autoplay=(self), battery=(self), camera=(self), cross-origin-isolated=(self), display-capture=(self), document-domain=(self), encrypted-media=(self), execution-while-not-rendered=(self), execution-while-out-of-viewport=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), keyboard-map=(self), magnetometer=(self), microphone=(self), midi=(self), navigation-override=(self), payment=(self), picture-in-picture=(self), publickey-credentials-get=(self), screen-wake-lock=(self), sync-xhr=(self), usb=(self), web-share=(self), xr-spatial-tracking=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' *.googleapis.com *.gstatic.com www.google.com apis.google.com *.google-analytics.com connect.facebook.net ajax.aspnetcdn.com https://www.youtube.com platform.twitter.com https://syndication.twitter.com/ https://s.ytimg.com https://publish.twitter.com *.twimg.com platform.linkedin.com http://platform.stumbleupon.com/1/widgets.js https://*.googletagmanager.com cdnjs.cloudflare.com https://*.fontawesome.com/ https://acsbapp.com/ cdn.ampproject.org web-chat.nativechat.com https://cdn.insight.sitefinity.com https://dec.azureedge.net https://player.vimeo.com/api/player.js https://www.youtube.com/iframe_api 'unsafe-inline' 'unsafe-eval'; style-src 'self' *.googleapis.com *.gstatic.com netdna.bootstrapcdn.com kendo.cdn.telerik.com www.google.com platform.twitter.com/css/ *.twimg.com https://*.fontawesome.com/ cdn.jsdelivr.net web-chat.nativechat.com https://cdn.insight.sitefinity.com https://dec.azureedge.net 'unsafe-inline'; img-src 'self' *.gstatic.com *
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy: unsafe-none
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: cross-origin

Links to (2)

mybrightsites.com×1
registermychapter.com×1

Linked from (1)

ucpscte.org×1