DNS & HTTP Analysis for talktalk.co.uk

Processing Domain talktalk.co.uk on 28/03/2019 06:41:48 pm


Processing DNS Records

Basic Checks

Here we check the basic functioning and security of your DNS

  • Zone Queries 5 Record Types and 14 Records Found
  • Zone Transfer Failed
  • Zone Dump
    • TXT
      • _dmarc.talktalk.co.uk. TTL 300 "v=DMARC1; p=none; fo=1; rua=mailto:This email address is being protected from spambots. You need JavaScript enabled to view it.; ruf=mailto:This email address is being protected from spambots. You need JavaScript enabled to view it.;"
      • talktalk.co.uk. TTL 300 "globalsign-domain-verification=zfCNvJt0iTcEchLrE0nrimsdl4h4m4zVTSJYOcrlcJ"
      • talktalk.co.uk. TTL 300 "google-site-verification=G-qHuypnf9ZfxPylyHGB32w5iHG1yDQWPafbu-4_ceY"
      • talktalk.co.uk. TTL 300 "v=spf1 redirect=talktalkplc.com"
    • A
      • talktalk.co.uk. TTL 300 107.162.133.62
      • www.talktalk.co.uk. TTL 300 107.162.139.224
    • MX
      • talktalk.co.uk. TTL 300 10 mx1.talktalkplc.com.
      • talktalk.co.uk. TTL 300 10 mx2.talktalkplc.com.
      • talktalk.co.uk. TTL 300 10 mx3.talktalkplc.com.
      • talktalk.co.uk. TTL 300 10 mx4.talktalkplc.com.
    • NS
      • talktalk.co.uk. TTL 3200 ds0.opaltelecom.net.
      • talktalk.co.uk. TTL 3200 ds1.opaltelecom.net.
      • talktalk.co.uk. TTL 3200 ds2.opaltelecom.net.
    • SOA
      • talktalk.co.uk. TTL 3200 ds0.opaltelecom.net. noc.opaltelecom.net. 2019031901 28800 7200 604800 86400

Nameservers

Here we check the setup of your nameservers

  • ds0.opaltelecom.net 62.24.128.200 Match
  • ds1.opaltelecom.net 62.24.202.57 Match
  • ds2.opaltelecom.net 62.24.134.4 Match

Processing TXT Records

DMARC Record:

The DMARC Record defines how MTA's should response when parsing DKIM and SPF records

  • v=dmarc1 ( The Version of this record)
  • p=none ( The Policy to implement on FAIL)
  • fo=1 ( Dictates what type of authentication/alignment vulnerabilities are reported)
  • rua=mailto:This email address is being protected from spambots. You need JavaScript enabled to view it. ( Reporting URI of aggregate reports)
  • ruf=mailto:This email address is being protected from spambots. You need JavaScript enabled to view it. ( Reporting URI for forensic reports)

Unknown Record:

This Record can be safely ignored

  • globalsign-domain-verification=zfcnvjt0itcechlre0nrimsdl4h4m4zvtsjyocrlcj

Google Domain Verification Record:

This record is used by Google to validate domain ownership when setting up Google Analytics etc

  • google-site-verification=g-qhuypnf9zfxpylyhgb32w5ihg1ydqwpafbu-4_cey

SPF Record:

The SPF Record defines which IP addresses are permitted to send email on this domain's behalf

  • v=spf1 ( The SPF Format Version Number)
  • redirect=talktalkplc.com

Processing MX (Mail Exchanger) Records

These Records determine the servers (mail servers) responsible for handling your incomming email. Each service is given a priority and they will be used in that order. If all the priorities are the same then they will be used in a round-robin fashion


  • Priority 10 handled by host mx1.talktalkplc.com. [62.24.202.82] Valid
    • Email Handled Third Party
    • Port 25 (smtp) : Open
  • Priority 10 handled by host mx2.talktalkplc.com. [62.24.202.83] Valid
    • Email Handled Third Party
    • Port 25 (smtp) : Open
  • Priority 10 handled by host mx3.talktalkplc.com. [62.24.139.14] Valid
    • Email Handled Third Party
    • Port 25 (smtp) : Open
  • Priority 10 handled by host mx4.talktalkplc.com. [62.24.139.15] Valid
    • Email Handled Third Party
    • Port 25 (smtp) : Open

Processing CNAME (Alias) Records

These records are aliases making one hostname relate to another. These are often used to match hosts back to clusters or internal referencs that may change.


    Processing A (IPv4 Address) Records

    These records define the IP Addresse(s) of the servers responsible for hosting your webiste and other resouces on your domain. The www record is the most common one and will be used to identify your website address


    • Host: talktalk.co.uk. = IP: [107.162.133.62] Valid Reachable (15.268ms)
    • Host: www.talktalk.co.uk. = IP: [107.162.139.224] Valid Reachable (16.01ms)

    Processing AAAA (IPv6 Address) Records

    These records define the IP Addresse(s) of the servers responsible for hosting your webiste and other resouces on your domain


      Processing Domain Public Records

        Domain Name WHOIS Information - talktalk.co.uk

        • Domain name
        • talktalk.co.uk
        • Data validation
        • Nominet was able to match the registrant's name and address against a 3rd party data source on 05-Dec-2017
        • Registrar
        • Corporation Service Company (UK) Limited [Tag = CSC-CORP-DOMAINS]
        • URL: http://www.cscprotectsbrands.com
        • Relevant dates
        • Registered on 19-Jul-1999
        • Expiry date 19-Jul-2019
        • Last updated 02-Jan-2019
        • Registration status
        • Registered until expiry date.
        • Name servers
        • ds0.opaltelecom.net
        • ds1.opaltelecom.net
        • ds2.opaltelecom.net
        • WHOIS lookup made at 18:38:08 28-Mar-2019

        Website Hosting WHOIS Information - 107.162.139.224

        • NetRange 107.162.0.0 - 107.162.255.255
        • CIDR 107.162.0.0/16
        • NetName DEFENSE-NET
        • NetHandle NET-107-162-0-0-1
        • Parent NET107 (NET-107-0-0-0-0)
        • NetType Direct Assignment
        • OriginAS AS55002
        • Organization Defense.Net, Inc (DEFEN-12)
        • RegDate 2013-12-19
        • Updated 2013-12-19
        • Ref: https://rdap.arin.net/registry/ip/107.162.0.0
        • OrgName Defense.Net, Inc
        • OrgId DEFEN-12
        • Address 501 Elliott Avenue West
        • City Seattle
        • StateProv WA
        • PostalCode 98119
        • Country US
        • RegDate 2013-02-04
        • Updated 2019-03-18
        • Ref: https://rdap.arin.net/registry/entity/DEFEN-12
        • OrgAbuseHandle NETOP225-ARIN
        • OrgAbuseName netops
        • OrgAbusePhone +1-866-329-4253
        • OrgAbuseEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
        • OrgAbuseRef: https://rdap.arin.net/registry/entity/NETOP225-ARIN
        • OrgNOCHandle NETOP225-ARIN
        • OrgNOCName netops
        • OrgNOCPhone +1-866-329-4253
        • OrgNOCEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
        • OrgNOCRef: https://rdap.arin.net/registry/entity/NETOP225-ARIN
        • OrgTechHandle NETOP225-ARIN
        • OrgTechName netops
        • OrgTechPhone +1-866-329-4253
        • OrgTechEmail This email address is being protected from spambots. You need JavaScript enabled to view it.
        • OrgTechRef: https://rdap.arin.net/registry/entity/NETOP225-ARIN

      Processing Website

        Website Headers for www.talktalk.co.uk

        We will obtain the headers from your website and parse them for validity


        • Web Server Header is Missing
        • Request Response HTTP/1.1 200 OK OK
        • SSL is available and enabled
          • Certificate Name /serialNumber=03849133/jurisdictionC=GB/businessCategory=Private Organization/C=GB/postalCode=WA3 7BH/ST=Cheshire/L=Warrington/street=Birchwood/street=Garrett Field/street=Stanford House/O=TalkTalk Communications Limited/OU=Hosted by TalkTalk Communications Limited/OU=COMODO EV Multi-Domain SSL/CN=www.talktalk.co.uk
          • Certificate Issued To
            • Country GB
            • City Cheshire
            • Locality Warrington
            • Organisation TalkTalk Communications Limited
            • Certificate Scope www.talktalk.co.uk
            Certificate Issuer
            • Country GB
            • Organisation COMODO CA Limited
            • Certificate Scope COMODO RSA Extended Validation Secure Server CA
            Certificate Validity
            • Valid From 171005000000Z
            • Valid To 191005235959Z
            Certificate Ciphers
            • SN RSA-SHA256
            • LN sha256WithRSAEncryption
            Certificate Extensions
            • Alternative Hostnames DNS:www.talktalk.co.uk, DNS:talktalk.co.uk
            • Key Usage TLS Web Server Authentication, TLS Web Client Authentication
        • There was a redirect to https://www.talktalk.co.uk/shop/
        • Valid methods for a specified resource (Allow) Missing
        • Control options for the current connection (Connection) Missing
        • Specifies Technology in use (X-Powered-By) Missing
        • Security Related

          • modifies the algorithm used to populate the Referer header (Referrer-Policy) Missing
          • stops pages when they detect XSS (X-XSS-Protection) : 1; mode=block
          • Allow and Deny the use of browser features (Feature-Policy) Missing
          • Platform for Privacy Preferences (P3P) Missing

          Cross Origin Resource Sharing

          • (Access-Control-Allow-Origin) Missing
          • (Access-Control-Allow-Credentials) Missing
          • (Access-Control-Expose-Headers) Missing
          • (Access-Control-Max-Age) Missing
          • (Access-Control-Allow-Methods) Missing
          • (Access-Control-Allow-Headers) Missing

          Content Headers

          • The natural language or languages of the intended audience (Content-Language) Missing
          • The form of encoding used (Transfer-Encoding) : chunked
          • The length of the response body (Content-Length) Missing
          • The Media type of the body of the request (Content-Type) : text/html
          • The date and time of generation (Date) : Thu, 28 Mar 2019 18:38:08 GMT
          • An opportunity to raise a File Download dialogue box (Content-Disposition) Missing
          • The type of encoding used on the data (Content-Encoding) Missing
          • An alternate location for the returned data (Content-Location) Missing
          • Where in a full body message this partial message belongs (Content-Range) Missing
          • An identifier for a specific version of a resource (ETag) Missing
          • how to match future request headers (Vary) : Accept-Encoding

          Caching Control

          • Tells caches whether they may cache this object (Cache-Control) Missing
          • Gives the date/time after which the response is considered stale (Expires) Missing
          • The last modified date for the requested object (Last-Modified) Missing
          • Implementation-specific fields for caching (Pragma) Missing
          • From an Intermediate cache (X-Cache-Action) Missing
          • Intermediate Cache Hits count (X-Cache-Hits) Missing
          • Intermediate Cache Age (X-Cache-Age) Missing
          • Informs the client of proxies through which the response was sent (Via) : 1.1 lon1-bit13
          • The Age this page has been cached in a proxy (Age) Missing

          Strict Transport Security (HSTS) Policy

          • A HSTS Policy for the client with scope (Strict-Transport-Security) Missing

          Cookies and Fragments

          • Cookie Data (Set-Cookie) : TS01dbd078=0184cb26e903da1fbfbbdd13e2addc15647c5b52b90f7d21ecc5d6bd09a1fb6cbfe79a9c99e79b017b6e23b64a19657814dea83970; Path=/; Secure; HTTPOnly

          Robots.txt

          • You have a robots.txt file and it appears to be valid
            # robots.txt for http://www.talktalk.co.uk
            
            User-agent: *
            Disallow: /my/ # this is a redirect directory search engines are getting trapped in
            Disallow: /shop/css/ # media files
            Allow: /my/resetpassword/identify # allow the password reset page

      Processing Website Profile Data

        Website Render for www.talktalk.co.uk

        Technology Profile talktalk.co.uk

        We will check for fingerprints of common website technologies


          • Failed to succesfully profile the website.

        Meta Profile https://www.talktalk.co.uk/shop/

        We will check the entire body for metadata


        • viewport : width=device-width,initial-scale=1
        • fragment : !
        • google-site-verification : 7_mgj4Xe6Ydg8VqZap4w8nKVRVd2M5nk2duMU0q1sMg
        • msvalidate_01 : 90D75F42725A94AA151BED9F06F4041A

        Feature Profile https://www.talktalk.co.uk/shop/

        We will check for common HTML, Javascript and CSS Features


        • DocType html (2986)
        • Document Validated No
        • Tawk.to No
        • FontAwesome No
        • Google Web Fonts No
        • T3 Framework No
        • Google Structured Data No
        • Google Analytics No
        • Mamoto Analytics No
        • JQuery Yes

      Processing Completed

        The process is now completed and the results are shown above. Please take a moment to consider each test and its response. DNS, SMTP and HTTP are not simple protocols and it is way beyond the scope of this tool to suggest improvements, but you are welcome to request assistance via our Forum.