virginians4fairness.org
virginians4fairness.org
HTML metadata
Technology
- Server
- Squarespace
- CMS
- Squarespace
- jQuery
- 3.5.1
- Fonts
-
- Google Fonts
Third-party hosts loaded (14)
- definitions.sqspcdn.com×39
- images.squarespace-cdn.com×20
- assets.squarespace.com×12
- app.sparkplugin.com×6
- static1.squarespace.com×5
- app.fla-shop.com×2
- cdn.jsdelivr.net×2
- fonts.googleapis.com×2
- js.adsrvr.org×2
- ajax.googleapis.com×1
- cdn.commoninja.com×1
- code.jquery.com×1
- fonts.gstatic.com×1
- static.elfsight.com×1
Social
Contact
DNS records live
- NS
-
- ns-cloud-a1.googledomains.com
- ns-cloud-a2.googledomains.com
- ns-cloud-a3.googledomains.com
- ns-cloud-a4.googledomains.com
- MX
-
- 10 mxa.mailgun.org
- 10 mxb.mailgun.org
Email authentication weak
- SPF
-
v=spf1 include:mailgun.org ~allsoftfail (~all) - DMARC
- not published
- DKIM
-
- k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCYaHCw7mkMRRemnmkVuNkwJefBrgIms4xOvcqwtHwduJUmX4LT234YO8Q+lEZu9BpD4Iu+ogjmrRwQCBtfM6HoMc4fKjh…
selectors probed - k1:
Certificate (current)
R13
Expires in 55 days
HTTP security headers
- present
-
- strict-transport-security
- x-frame-options
- x-content-type-options
- findings
-
- missing Content Security Policy
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff- strict-transport-security
max-age=15552000