woodbridgelibrary.org
woodbridgelibrary.org
HTML metadata
Technology
Third-party hosts loaded (1)
- docaccess.com×1
Social
Contact
- Phone
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2006-02-16
- Expires
- 2034-02-16 2828 days left
- Updated
- 2024-11-05
- Name servers
-
- ns1.njsl.org
- ns2.njsl.org
DNS records live
- NS
-
- ns1.njsl.org
- ns2.njsl.org
- MX
-
- 10 njstatelib-mx.email-protect.gosecure.net
Email authentication partial
- SPF
-
v=spf1 ip4:209.212.30.146 include:spf.jerseyconnect.net +a +ip4:199.167.42.144/32 +a:app.makeshift.ca ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=none;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400policy: none (monitoring only) · sp=none - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswfdUskCgxiVRFJTDugcaFCN9O4Bee2cd8bBnu062Be3QVDQMOuVyRL9cFRcmwdHTpGs9UEMMx30Q2…
selectors probed - default:
Certificate (current)
R12
Expires in 30 days
HTTP security headers
- present
-
- content-security-policy
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *