https://csun.edu
Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.SCORE
84
GRADE
B
FIX
1
REVIEW
3
PASS
5
INFO
0
Probed from New York, United Stated
302 Found
Checks
95 PASS 3 REVIEW 1 FIX
DCDN & DeliveryActionNo CDN detectedFIX
CDN & Delivery
ActionNo CDN detected
No CDN detected
Warning::
No CDN detected
A CDN can significantly improve load times for users around the world by caching content at edge nodes closer to them.
No CDN detected
Consider using a CDN to improve global delivery speed and reduce origin load.
CIPv6 ReadinessActionNo IPv6 supportREVIEW
IPv6 Readiness
ActionNo IPv6 support
No IPv6 support
Info::
No IPv6 (AAAA) records found
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
No IPv6 Support
About 40% of internet users have IPv6. Consider adding AAAA records.
IPv6 support is increasingly important for global accessibility. About 40% of internet users have IPv6 connectivity.
Why this matters
No AAAA records — same impact as 'no IPv6 (AAAA) records'; IPv6-preferring clients pay extra latency falling back to IPv4.
Source: Google IPv6 stats
CURL VariantsActionwww/non-www, trailing slash, HTTP→HTTPSREVIEW
URL Variants
Actionwww/non-www, trailing slash, HTTP→HTTPS
www/non-www, trailing slash, HTTP→HTTPS
Critical::
Both www and non-www versions serve content
Got: Both variants return 200 Expected: One variant 301-redirects to the other
Warning::
HTTP→HTTPS redirect uses 302 instead of 301
Got: 302 temporary redirect Expected: 301 permanent redirect
www / non-www
200https://www.csun.edu/
200https://csun.edu/
Inconsistent — duplicate content risk
HTTP → HTTPS
302http://csun.edu/ → https://www.csun.edu/
Use 301 (permanent) instead of 302 (temporary)
BTLS Certificate Expiry & Recommendations334 days until leaf cert expires — 3 issues to addressREVIEW
TLS Certificate Expiry & Recommendations
334 days until leaf cert expires — 3 issues to address
Certificate validity
334
days left
0d 30d 60d 90d+
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
A+DNS Records1 A records, 19 ms lookupPASS
DNS Records
1 A records, 19 ms lookup
1 A records, 19 ms lookup
Info::
Resolves to 1 IPv4 address(es)
Got: 130.166.238.195
Info::
Single A record — no DNS redundancy
Multiple A records provide failover if one server goes down.
Info::
No IPv6 (AAAA) records
Info::
4 nameserver(s) configured
Got: ns-1357.awsdns-41.org, ns-1745.awsdns-26.co.uk, ns-49.awsdns-06.com, ns-894.awsdns-47.net
Info::
2 mail exchanger(s) configured
Info::
CAA records not checked
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Info::
SPF record present in TXT
Info::
DNS resolution time: 19 ms
Got: 19 ms
| A | 130.166.238.195 |
| AAAA | — |
| CNAME | — |
| NS | ns-1357.awsdns-41.org, ns-1745.awsdns-26.co.uk, ns-49.awsdns-06.com, ns-894.awsdns-47.net |
| MX | 10 mxa-00186201.gslb.pphosted.com 10 mxb-00186201.gslb.pphosted.com |
| TXT | 1GV6YTHKBEPK7O11DVQ2W28FU9GI2LT2T9IEP4M8T MA/sGTFNlXY1XKtBCJ7r815Watz+Nf70Qeu6qSgErcKYr3rJmuW/0NbafKxfbCh82vo1TvlIzrI2nUEj... MS=ms33515436 _acme-challenge.w2.csun.edu.=lU6pwZn06CkQCsPi247sUZZ1vsGSQ3JUzgthh2YR_ow _acme-challenge.w2.csun.edu.lU6pwZn06CkQCsPi247sUZZ1vsGSQ3JUzgthh2YR_ow _github-challenge-CSUN-IT.csun.edu.=4d9e0bb59b _github-challenge-CSUN-IT.www.csun.edu.=35450860f7 adobe-idp-site-verification=3a0fe2fe45dceb0480d9fc5bfe3526b740cac4607514c1bb2d49... adobe-sign-verification=a408c47cff5e57a342c403fac8d12891 airtable-verification=b6d719390110f1286b6a122278b3bb62 amazonses:2Mz7VkMxUB4F0BCrjIFxWXi+eBwt5kKVPaPJq ow1haU= apple-domain-verification=4WgM3h9XboN5frX5 brevo-code:5d331c4366a863df651e6e341acd8f3a docusign=0b68d1f2-76ec-4a83-bf32-438224f6d73b docusign=8e6dd401-953d-4016-933d-bfd914caa8a8 e2ma-verification=qzegb e2ma-verification=u2ggb facebook-domain-verification=w5x9pcyiplntbag7sd91muye8jp2sj google-site-verification=9uif3DKT-j_AtPnSv9208xkPZ0aGx5quI14tT048GRU google-site-verification=JIl_-FhsVC6rQF1ZnYVf6QWpzErgJ2yfRmvx0Gm4OiQ google-site-verification=X9LDcy1DM6yIN80WbG9KBv5RECBNuHExlXhIRi4hmEY google-site-verification=danbuHqBv6KA-4L7wN2HssxBRGeJQZUVp9_fyvms-lM google-site-verification=grpO32hwTZ4xfhqrsTGNe1dFvN98krHldki5z5-IgPY google-site-verification=v3EbdTQHlpCBuPfXTwEBAtBHek_Km9kP7n_ZooUzKYU jamf-site-verification=DRNuAQ93vs5Ixg2kd0mm-Q kuqn25bq1hmn1250setvghlgj1 onetrust-domain-verification=6d28bb411f45464580d57feff592c5da openai-domain-verification=dv-99OeDSBPwSObPN7XLMgiop6w pardot_54022_*=b5ec6f4925ee893396e720c4e296634312af7a7eeee1f81f3d5e1a578ed09522 sending_domain54022=2aa9670b7da4d5891c8dd0540ae5e54e285a897ce2a1d11b64df16ebbe01... smartsheet-site-validation=Jz2G6FyvBzH3Iepd6Hq--6P_zg0iiEdD v=msv1 t=953B945F-7814-4967-B740-15F9A5A77610 SPF v=spf1 include:_spf-a.csun.edu include:_spf-a1.csun.edu include:_spf-b.csun.edu ... |
| CAA | Lookup not available with standard resolver |
Resolved in 19 ms
Multiple A records provide failover if one server goes down.
Why this matters
Single A record means a single point of failure — if that IP goes down, your site is unreachable until DNS TTL expires.
Learn more ▾ ▴
Add multiple A records for round-robin failover, or use a managed DNS provider with health-checked failover (Route 53, Cloudflare, NS1). Short TTL (60-300s) lets clients recover faster on outages.
Source: SRE practice / DNS architecture
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Why this matters
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
ARedirect Chain1 redirect(s), 462 ms totalPASS
Redirect Chain
1 redirect(s), 462 ms total
1 redirect(s), 462 ms total
Info::
Single redirect
Got: https://csun.edu → https://www.csun.edu/ (302)
Info::
WWW normalization redirect
Info::
Uses 302 (temporary) redirect
If permanent, use 301 instead.
Got: https://csun.edu
https://csun.edu
235 ms · HTTP/1.0
302
https://www.csun.edu/
227 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://csun.edu | 302 | 235 ms | HTTP/1.0 | BigIP |
| 2 | https://www.csun.edu/ | 200 | 227 ms | HTTP/1.1 | nginx |
See the visual redirect chain in the HTTP Probe tab →
If permanent, use 301 instead.
Why this matters
302 (Found) is for genuinely temporary redirects — if this redirect is permanent, switch to 301 to preserve SEO equity.
Learn more ▾ ▴
Search engines treat 302 as temporary, keeping the original URL indexed and not transferring full link equity to the destination. Use 301 (Moved Permanently) for permanent redirects (HTTP→HTTPS, www-vs-non-www, URL restructures).
Source: Google Search Central
A+Crawlabilityrobots.txt present, sitemap with 501 URLsPASS
Crawlability
robots.txt present, sitemap with 501 URLs
robots.txt present, sitemap with 501 URLs
Info::
robots.txt is present
Got: 2231 bytes
Info::
sitemap.xml is present
Info::
sitemap.xml is valid XML
Info::
sitemap.xml contains 501 entries
Info::
robots.txt does not reference a sitemap
Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.
Add a 'Sitemap:' directive to robots.txt so search engines can discover your sitemap.
Why this matters
robots.txt omits Sitemap: directive — crawlers must fetch /sitemap.xml by convention; reliable but missing the explicit hint.
Source: sitemaps.org
robots.txt 200 OK
Size 2231 B Sitemaps referenced 0 User-agents * Blocking No — crawling allowed
#
# robots.txt
#
# This file is to prevent the crawling and indexing of certain parts
# of your site by web crawlers and spiders run by sites like Yahoo!
# and Google. By telling these "robots" where not to go on your site,
# you save bandwidth and server resources.
#
# This file will be ignored unless it is at the root of your host:
# Used: http://example.com/robots.txt
# Ignored: http://example.com/site/robots.txt
#
# For more information about the robots.txt standard, see:
# http://www.robotstxt.org/robotstxt.html
User-agent: *
Crawl-delay: 10
# CSS, JS, Images
Allow: /misc/*.css$
Allow: /misc/*.css?
Allow: /misc/*.js$
Allow: /misc/*.js?
Allow: /misc/*.gif
Allow: /misc/*.jpg
Allow: /misc/*.jpeg
Allow: /misc/*.png
Allow: /modules/*.css$
Allow: /modules/*.css?
Allow: /modules/*.js$
Allow: /modules/*.js?
Allow: /modules/*.gif
Allow: /modules/*.jpg
Allow: /modules/*.jpeg
Allow: /modules/*.png
Allow: /profiles/*.css$
Allow: /profiles/*.css?
Allow: /profiles/*.js$
Allow: /profiles/*.js?
Allow: /profiles/*.gif
Allow: /profiles/*.jpg
Allow: /profiles/*.jpeg
Allow: /profiles/*.png
Allow: /themes/*.css$
Allow: /themes/*.css?
Allow: /themes/*.js$
Allow: /themes/*.js?
Allow: /themes/*.gif
Allow: /themes/*.jpg
Allow: /themes/*.jpeg
Allow: /themes/*.png
# Directories
Disallow: /includes/
Disallow: /misc/
Disallow: /modules/
Disallow: /profiles/
Disallow: /scripts/
Disallow: /themes/
# Files
Disallow: /CHANGELOG.txt
Disallow: /cron.php
Disallow: /INSTALL.mysql.txt
Disallow: /INSTALL.pgsql.txt
Disallow: /INSTALL.sqlite.txt
Disallow: /install.php
Disallow: /INSTALL.txt
Disallow: /LICENSE.txt
Disallow: /MAINTAINERS.txt
Disallow: /update.php
Disallow: /UPGRADE.txt
Disallow: /xmlrpc.php
# Paths (clean URLs)
Disallow: /admin/
Disallow: /comment/reply/
Disallow: /filter/tips/
Disallow: /node/add/
Disallow: /search/
Disallow: /user/register/
Disallow: /user/password/
Disallow: /user/login/
Disallow: /user/logout/
# Paths (no clean URLs)
Disallow: /?q=admin/
Disallow: /?q=comment/reply/
Disallow: /?q=filter/tips/
Disallow: /?q=node/add/
Disallow: /?q=search/
Disallow: /?q=user/password/
Disallow: /?q=user/register/
Disallow: /?q=user/login/
Disallow: /?q=user/logout/
Disallow: /sites/default/files/900-19.pdf
sitemap.xml 200 OK
Type URL Set URLs 501 entries Valid XML Yes
A+Domain Intelligencecsun.edu — 38 years, 7 months old, hosted on CENIC-2152 - CENIC, USPASS
Domain Intelligence
csun.edu — 38 years, 7 months old, hosted on CENIC-2152 - CENIC, US
csun.edu — 38 years, 7 months old, hosted on CENIC-2152 - CENIC, US
Info::
Domain registered until Jul 31, 2026 (3 months remaining)
Info::
Hosting: CENIC-2152 - CENIC, US
Got: AS2152
Domain expiry
45 days
July 31, 2026
SSL certificate
334 days
Issued by Internet2
Domain age
38 years, 7 months
Registered March 31, 1988
DNSSEC
Status unknown
Protects against DNS spoofing
Hosting
CENIC-2152 - CENIC, US
ASN AS2152
130.166.238.195
Registrar
Registrar unknown
Lock status unknown 4 NS records
Expiry timeline
Today
+1 year
Domain expiry SSL expiry Danger zone (≤30 days)
Recommended actions
- Renew the domain or enable auto-renewal to prevent accidental expiry
Registrar
Created March 31, 1988 (38 years, 7 months ago)
Expires July 31, 2026 (3 months)
Last Updated October 30, 2023
Name Servers ns-1745.awsdns-26.co.uk, ns-49.awsdns-06.com, ns-1357.awsdns-41.org, ns-894.awsdns-47.net
Registrant California State University, Northridge
Hosting
IP Address 130.166.238.195
ASN AS2152 (CENIC-2152 - CENIC, US)
Provider CENIC-2152 - CENIC, US
Data source: whois (0.3s)
A+HTTP Probe TimingTotal 207 ms — DNS, TCP, TLS, TTFB, content transfer breakdownPASS
HTTP Probe Timing
Total 207 ms — DNS, TCP, TLS, TTFB, content transfer breakdown
DNS Lookup DNS Lookup — time to resolve the domain name to an IP address.
4 msTCP Connect TCP Connect — time to establish a TCP connection to the server.
66 msTLS Handshake TLS Handshake — time to complete the HTTPS encryption handshake.
71 msTime to First Byte Time to First Byte — how long the server takes to respond with the first byte of data.
207 msTotal Time Total request time from DNS lookup through full response.
208 msConnection waterfall
DNS Lookup 4 ms TCP Connect 66 ms TLS Handshake 71 ms Server Processing 66 ms Content Transfer 0 ms
All checks on this page are automated. Results are estimates - run targeted manual reviews when the score affects a release decision.