uniononline.co.uk

.uk crawl

First seen 2026-05-10 · Last seen 2026-05-10 · ok HTTP/1.1 200 10205 ms crawled 2026-05-16

IE · 52.16.8.119 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

Architectural Ironmongery | UNION locks UK | UNION

Description

We pride ourselves on high-quality locks and door security solutions and hardware you can trust. Take a look at our wide range of architectural ironmongery today.

Language

en-GB

Canonical

https://www.uniononline.co.uk/uk/en

Translations

en ×2

Open Graph

url: https://www.uniononline.co.uk/uk/en
title: Architectural Ironmongery | UNION locks UK
description: We pride ourselves on high-quality locks and door security solutions and hardware you can trust. Take a look at our wide range of architectural ironmongery today.

Technology

Third-party hosts loaded (1)

gw-assets.assaabloy.com×6

DNS records live

NS

dns1.cscdns.net
dns2.cscdns.net

MX

0 uniononline-co-uk.mail.protection.outlook.com

TXT

pqzb51rwy9zrb0qlcc72jy5zz0w96rww
muwdnC/Vv3et5JDllv5XyHibiE5OksbVRRTHt49d3DRzvdaSvFB6Shv2UT0tzsyk+xne1mEsveIckrg69FvUbg==

Verified for

Dynamics 365

Email authentication strong

SPF

v=spf1 a mx include:mailgun.org include:aspmx.pardot.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:c617a603d59c866@rep.dmarcanalyzer.com; ruf=mailto:c617a603d59c866@for.dmarcanalyzer.com; pct=100; fo=1

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FkYaBnLddNKd2NVHvSRY/vcfQASVB8Y/EaksvbcnZgFYHhgFvDB3T0lpDBhw7xrNejLBRf8cCVT4a…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArf4jTdiLZA5+1dhfrieKUOMbAQIU+NuOFswO/AtI6/zwi9RVPfnPkwWJaeyxWd7z1FKv7gRMW81OAV…

selectors probed

Certificate (current)

R12

from 2026-03-28 to 2026-06-26

Expires in 37 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.uniononline.co.uk/uk/en

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
weak frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
permissions-policy: geolocation=(), midi=(), sync-xhr=(*), microphone=(), camera=(), magnetometer=(self), gyroscope=(self), accelerometer=(self), fullscreen=(self "https://www.youtube-nocookie.com"), payment=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; connect-src https: wss:; font-src 'self' https://fonts.gstatic.com; frame-src https:; img-src https: data:; media-src https: blob:; worker-src blob:; object-src 'none'; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; form-action https:; report-uri https://csp-reports.globalweb.aws.assaabloy.com/reports;
strict-transport-security: max-age=31557600

Linked from (1)

lockrite.org×1