ue.org

.org crawl

First seen 2026-04-19 · Last seen 2026-05-13 · ok HTTP/1.1 200 5848 ms crawled 2026-05-13

SE · 217.114.94.2 · AS30811 Optimizely AB

Reputation 89/100 weak security headers dmarc monitor-only

sector education type landing page

HTML metadata

Title: Education’s Own Insurance Company | United Educators
Language: en
Canonical: https://www.ue.org/

Open Graph

url: https://www.ue.org/
title: Education’s Own Insurance Company
locale: en
description: United Educators (UE) provides liability insurance and risk management solutions to meet the unique needs of K-12 schools, colleges, and universities.

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (3)

i.vimeocdn.com×4
use.typekit.net×1
www.googletagmanager.com×1

Social

Contact

Phone

(301) 907-4908

Address

7700 Wisconsin Avenue Suite 500, 20814, Bethesda, MD, USA

Registration

Registrar

Network Solutions, LLC

Created

1996-02-06

Expires

2032-02-07 2089 days left

Updated

2022-11-07

Name servers

ns-1528.awsdns-63.org
dns3.easydns.org
dns1.easydns.com
dns2.easydns.net
ns-1904.awsdns-46.co.uk
ns-191.awsdns-23.com
ns-586.awsdns-09.net

DNS records live

NS

ns-1528.awsdns-63.org
ns-1904.awsdns-46.co.uk
ns-191.awsdns-23.com
ns-586.awsdns-09.net

MX

10 mxa-003b1001.gslb.pphosted.com
10 mxb-003b1001.gslb.pphosted.com

TXT

Show 12 TXT records

atlassian-domain-verification=gx+SvWZRxBPOGe0W4lMQa4EJinJmaicR++J8aGJ7y+oONHBDjpWxEStUyVwxo4eW
google-site-verification=_IFw1NwoBAytKrqgHf8fZutQ-w9a8zGzDu1xF_hVEs0
yahoo-verification-key=ZcCmh6VwgGMwqLNN7VRE4S9xb71OffgjA0cj9FrLxyk=
docusign=f482a056-81e5-4ae6-bd52-d6ff359bb68b
anthropic-domain-verification-a5peka=3AEXX9WfeDeWZXmlyVdk2SAJg
kre9ujp3ih7bmj7ocurnllkhlb
jgpqggnihn4vm4a5l170h8mjik
docusign=34db20a2-22db-4c7d-b39f-c11d4f72d711
260grhuvss5ucnphbo49jd37v6
v99surrukhj1r37ihpot23qecj
kc622kcj012dfkaff74j84l9h1
openai-domain-verification=dv-EPraGeJg79uWX8X9fQtFjyCQ

Email authentication partial

SPF

v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/3atl55xKVWv/4oY01sWRlB380CyLtW/7b8IdFxV9/wFlOiHfZtJXDWd+GqvcNgbsVdpK9UUz7MgBoR6cxA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA91sCkNDQLuVLrbUZwkRGCa5go/ejkH6oUy1XKCm2jHQMbU4cImL2tojqHsINo7svM8Z2eU/Ezo6BoG81hG…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArl2VRJu7/cRr+ZYljcjfsSnE9wbuCgbvagiBLZanXs8HbhBLrvapuiCSGc2EYVizU6Eyr13L4r9I/2WIxi…

selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2025-06-05 to 2026-07-07

Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.ue.org/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src * data: blob:; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; img-src * data: blob:; connect-src *; frame-src *; font-src * data:; media-src * blob:; worker-src * blob:; frame-ancestors 'self';

Links to (4)

Linked from (1)

thebiic.org×2