yubawater.org
yubawater.org
HTML metadata
Technology
- CDN
- Cloudflare
- Analytics
-
- Google Tag Manager
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (4)
- player.vimeo.com×15
- content.govdelivery.com×1
- docaccess.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- GoDaddy.com, LLC
- Created
- 2018-03-26
- Expires
- 2031-03-26 1770 days left
- Updated
- 2026-05-10
- Name servers
-
- ns49.domaincontrol.com
- ns50.domaincontrol.com
DNS records live
- NS
-
- ns49.domaincontrol.com
- ns50.domaincontrol.com
- MX
-
- 10 d270796a.ess.barracudanetworks.com
- 20 d270796b.ess.barracudanetworks.com
- TXT
-
MS=2CF528682D02F3442BB3988A0BC4D2D9177C878E
- Verified for
-
- Apple
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 ip4:207.141.37.178 include:spf.protection.outlook.com include:spf.ess.barracudanetworks.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; rua=mailto:cybersec@yubawater.org; ruf=mailto:it-analysts@yubawater.orgpolicy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCraN99Vk+5Jh8/hMcrmufbx/Ep6DEZlDcS2n2ayCwTPmYvfq8AXSARK0PodQafAXKt1qbXvuNCfvVrEqfRLa…
selectors probed - selector1:
Certificate (current)
R12
Expires in 55 days
HTTP security headers
- present
-
- content-security-policy
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://*.granicus.com https://platform.civicplus.com https://account.civicplus.com https://analytics.civicplus.com; img-src * data: blob:; worker-src * data: blob: 'unsafe-eval' 'unsafe-inline'; script-src * about: 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; media-src * blob:; font-src * data:; default-src *