zachtheater.org

.org crawl

First seen 2026-05-10 · Last seen 2026-05-16 · ok HTTP/1.1 200 2045 ms crawled 2026-05-16

US · 172.67.187.143 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Home
Language: en
Canonical: https://www.zachtheater.org/

Open Graph

url: https://www.zachtheater.org/
title: Home
site name: Zach Theater

Technology

CDN: Cloudflare
CMS: Gatsby

Analytics

Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (5)

www.googletagmanager.com×3
cdn.jsdelivr.net×1
translate.google.com×1
use.typekit.net×1
www.facebook.com×1

Social

Contact

Phone

Registration

Registrar

GoDaddy.com, LLC

Created

2008-04-04

Expires

2027-04-04 319 days left

Updated

2026-03-08

Name servers

chan.ns.cloudflare.com
cody.ns.cloudflare.com

DNS records live

NS

chan.ns.cloudflare.com
cody.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

google-site-verification=nu1BZA3oypmdVIQQ8VIgsDxim7af17nF6l-Nbcmas6I
slack-domain-verification=37fv7ZGxSn646n0upKr7bqYaOB1WF4vpZ7yGLzO3
canva-site-verification=UuLZaoSn6STkKJWL4ESDGw

Email authentication partial

SPF

v=spf1 ip4:173.236.20.23 ip4:173.236.20.79 ip4:173.236.20.80 include:dc-aa8e722993._spfm.zachtheater.org include:emsd1.com include:ramp.tessituranetwork.com include:spf.dynect.net include:rp.oracleemaildelivery.com ~all

softfail (~all)

DMARC

v=DMARC1;p=none;rua=mailto:060c239f38@rua.easydmarc.us;ruf=mailto:060c239f38@ruf.easydmarc.us;fo=1;

policy: none (monitoring only)

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rIsD6/5d5ZjD9BMrIiUfvzoFqQ6xHhfArY/dSkMlVC25nSnXD8W8JFrsOcpN5t/sJ2x/rMZKb8wLU…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PcYVpKFobjQUSd+ABTvvQH33dlosIvi/Y4ZWTf8yDdC++iy2d+M3JZBadHpU5DNWQhKHOgnXYuNbyvdQm…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsHt2LJOwyLO2JMaW7MLuIXp+KCeda5+unIRbwuQzt0xWX9tH0bWZ7exWSA+jUehRxH1T8aJnQunsGfDKs…

selectors probed

Certificate (current)

WE1

from 2026-04-20 to 2026-07-19

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.zachtheater.org/

present

strict-transport-security
content-security-policy-report-only
x-frame-options
x-content-type-options

findings

missing Content Security Policy
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubDomains; preload, max-age=31536000; includeSubDomains
content-security-policy-report-only: default-src 'self'; script-src 'self' https://unpkg.com https://www.googletagmanager.com https://www.google.com https://cdn.jsdelivr.net https://www.google-analytics.com https://www.gstatic.com; style-src 'self' https://fonts.googleapis.com 'sha256-CJA/8o3lKgIsSMFoOMXs8tM1vlmEDT6OlAFy7+UCbI0='; connect-src 'self' https://www.google-analytics.com https://www.googletagmanager.com; img-src 'self' https://www.zachtheater.org https://www.google-analytics.com https://www.googletagmanager.com data:; object-src 'none'; base-uri 'self'; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com; frame-src 'self'; manifest-src 'self' https://www.zachtheater.org; media-src 'self'; worker-src 'none';