velpos.com

.com crawl

First seen 2026-04-26 · Last seen 2026-05-16 · ok HTTP/1.1 200 3967 ms crawled 2026-05-08

CA · 15.235.67.127 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Login — Veloce Dealer Portal
Language: en

Technology

Server: Apache

Registration

Registrar

Created

2012-08-27

Expires

2027-08-27 463 days left

Updated

2026-05-01

Name servers

ns-1437.awsdns-51.org
ns-1875.awsdns-42.co.uk
ns-297.awsdns-37.com
ns-694.awsdns-22.net

DNS records live

NS

ns-1437.awsdns-51.org
ns-1875.awsdns-42.co.uk
ns-297.awsdns-37.com
ns-694.awsdns-22.net

MX

0 velpos.com

Email authentication partial

SPF

v=spf1 +a +mx +ip4:15.235.67.127 ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FkqoRer6SKVmYoJBQUm2scrP9jXiOWhODa+PMwscOp4jdwrO1D8WHe7XzXpEIqx/PRl2cVyaDB0pF…

selectors probed

Certificate (current)

R13

from 2026-05-03 to 2026-08-01

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://velpos.com/login.php

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

weak frame protection
weak content type protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY, DENY
x-content-type-options: nosniff, nosniff
content-security-policy: default-src 'self'; script-src 'self' 'nonce-CVb2GdZOM0MfPlVr7Szxlg=='; style-src 'self'; font-src 'self'; img-src 'self' data:; connect-src 'self'; object-src 'none'; base-uri 'self'; form-action 'self'; frame-ancestors 'none'
strict-transport-security: max-age=31536000; includeSubDomains

Linked from (1)

velocehq.com×2