wau.org

HTML metadata

Title: Homepage | The Word Among Us
Description: A Catholic Devotional Magazine based on the Daily Mass Readings
Canonical: https://wau.org/

Open Graph

url: https://wau.org/
title: Homepage
locale: en-US
site name: The Word Among Us
description: A Catholic Devotional Magazine based on the Daily Mass Readings

Technology

CDN: Cloudflare
CMS: Joomla

Analytics

Cloudflare Insights
Google Tag Manager

Ads

Meta Pixel

Cookie consent

Iubenda

Social widgets

YouTube Embed

Third-party hosts loaded (8)

s3.amazonaws.com×6
ajax.googleapis.com×2
cdn.iubenda.com×2
connect.facebook.net×1
cs.iubenda.com×1
static.cloudflareinsights.com×1
www.googletagmanager.com×1
www.youtube-nocookie.com×1

Social

Registration

Registrar

DNC Holdings, Inc.

Created

1996-05-03

Expires

2031-05-04 1810 days left

Updated

2026-04-11

Name servers

cheryl.ns.cloudflare.com
chris.ns.cloudflare.com

DNS records live

NS

cheryl.ns.cloudflare.com
chris.ns.cloudflare.com

MX

0 wau-org.mail.protection.outlook.com

TXT

Show 5 TXT records

MS=90B1FF2E6BC735D0AC819E77C9CC3807231DB9CD
google-site-verification=A4Ed1nePPyms-zDKspHWO4yjQ2d3YidD-RxhEoyF3k0
google-site-verification=N7K93vFqCCkbmzR9kfH0aHMl0c8A_s-ETZBSgHnAETQ
sophos-domain-verification=7bb4bc28fc283e2c3665fe4e554cc6777f1c41e2
stripe-verification=e53394e3c059f08292a6353f4f548ed174b69e989c603140c8d63395bae94592

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:u826348.wl.sendgrid.net include:_spf.salesforce.com include:_spf.emailcampaigns.net include:servers.mcsv.net include:_spf.safewebservices.com a ip4:64.202.115.81 ip4:64.202.115.238 ip4:64.202.116.119 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:2507a88cadec48499372a80564cc6e98@dmarc-reports.cloudflare.net

policy: none (monitoring only)

DKIM

Show 5 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDS0GoSZASnFed4vkjN+p+bzTSIMjpo3WJ4reQG2Iq8Z7U/V+0ddvukAsz+1HzyhbYq+N+q+/LHjATnFp2nkH…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt34RDIPvJeiquMahEiHpcqG7fOrZAj4lO6j/jbrXiiUVrSx/sZ6hHhvWVTpCaDJX7R4jq9F75qMHLfUvyy…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC9LWXiWpO6DMqxNNzrzL1UldY2kJfo2dbu4MHmOLwOufnYTLJuO0Byqz+bx4WfCfoC8UZKDxpdVt575R/05aTzHd…

selectors probed

Certificate (current)

E7

from 2026-04-20 to 2026-07-19

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://wau.org/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' www.facebook.com *.iubenda.com www.youtube-nocookie.com s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' ajax.googleapis.com www.googletagmanager.com connect.facebook.net *.iubenda.com *.vigilproject.app static.cloudflareinsights.com *.craftcms.com; connect-src 'self' www.google-analytics.com *.iubenda.com *.craftcms.com; img-src 'self' data: s3.amazonaws.com www.google-analytics.com; style-src 'self' *.facebook.net *.iubenda.com 'unsafe-hashes' 'unsafe-inline'; font-src 'self' data:; base-uri 'self'; form-action 'self'; upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains