Infrastructure
· 9 checks — DNS, redirects, IPv6, crawlability, URL variants, and domain intelligence rolled into one auditable list.BURL Variantswww/non-www, trailing slash, HTTP→HTTPSREVIEW
www / non-www
Inconsistent — duplicate content risk
HTTP → HTTPS
Consistent
BTLS Certificate Expiry & Recommendations64 days until leaf cert expires — 3 issues to addressREVIEW
Certificate validity
Recommended actions
- Enable HSTS: Strict-Transport-Security: max-age=31536000; includeSubDomains
- Enable DNSSEC on your domain for DNS spoofing protection
- Enable OCSP stapling on your TLS server to remove a CA roundtrip and protect user privacy
BCDN & DeliveryCloudflareREVIEW
A+DNS Records2 A records, 8 ms lookupPASS
| A | 104.18.22.184, 104.18.23.184 |
| AAAA | 2606:4700::6812:16b8, 2606:4700::6812:17b8 |
| CNAME | — |
| NS | john.ns.cloudflare.com, nova.ns.cloudflare.com |
| MX | 10 aspmx.l.google.com 20 alt2.aspmx.l.google.com 20 alt1.aspmx.l.google.com 30 aspmx3.googlemail.com 30 aspmx2.googlemail.com |
| TXT | EC9ABEA9A4 _r66ihttq0aijp1a6uy3c3w6uw74ythj google-site-verification=UKn9sELycR9BkwSa9nh2VkJhH_eHxrjXis7hr_u-y94 google-site-verification=_ZBS5ZW4rG-kTJSl_kKdGnNcIo7U1ch7tQlq0GxxVbc SPF v=spf1 include:_spf.google.com ~all |
| CAA | Lookup not available with standard resolver |
CAA record lookup requires a specialized DNS resolver. This check will be available in a future update.
Informational: CAA (Certification Authority Authorization) records weren't checked in this scan.
ARedirect Chain1 redirect(s), 279 ms totalPASS
https://theinformation.com
29 ms · HTTP/1.1
https://www.theinformation.com/
250 ms · HTTP/1.1 FINAL
| # | URL | Status | Time | Protocol | Server |
|---|---|---|---|---|---|
| 1 | https://theinformation.com | 301 | 29 ms | HTTP/1.1 | cloudflare |
| 2 | https://www.theinformation.com/ | 200 | 250 ms | HTTP/1.1 | cloudflare |
See the visual redirect chain in the HTTP Probe tab →
A+IPv6 ReadinessIPv6 reachable (2 ms)PASS
A+Crawlabilityrobots.txt present, sitemap with 13 URLsPASS
Sitemap: https://www.theinformation.com/sitemap.xml
Sitemap: https://www.theinformation.com/sitemap-news.xml
User-agent: *
Disallow: */1000$
Disallow: /ahoy/*
Disallow: /search*
Disallow: /api*
Disallow: /api_react*
Disallow: /cdn-cgi/rum
Disallow: /company-landing/
Disallow: *?commentId=*
Allow: /api/v1/subscriber_directory/*
# Topic pages
Disallow: /topics/
Allow: /topics/adobe
Allow: /topics/ai
Allow: /topics/airbnb
Allow: /topics/albemarle
Allow: /topics/alphabet
Allow: /topics/amazon
Allow: /topics/andreessen-horowitz
Allow: /topics/anthropic
Allow: /topics/apple
Allow: /topics/aws
Allow: /topics/binance
Allow: /topics/brex
Allow: /topics/bytedance
Allow: /topics/canva
Allow: /topics/chime
Allow: /topics/china
Allow: /topics/circle
Allow: /topics/cisco
Allow: /topics/cloud
Allow: /topics/cohere
Allow: /topics/cohesity
Allow: /topics/coinbase
Allow: /topics/coreweave
Allow: /topics/crypto
Allow: /topics/databricks
Allow: /topics/deel
Allow: /topics/deepmind
Allow: /topics/deepseek
Allow: /topics/didi-chuxing
Allow: /topics/doordash
Allow: /topics/e-commerce
Allow: /topics/enterprise
Allow: /topics/facebook
Allow: /topics/figma
Allow: /topics/flexport
Allow: /topics/google
Allow: /topics/instagram
Allow: /topics/intel
Allow: /topics/klarna
Allow: /topics/lambda
Allow: /topics/lyft
Allow: /topics/markets
Allow: /topics/meta
Allow: /topics/meta-generative-ai
Allow: /topics/microsoft
Allow: /topics/mongodb
Allow: /topics/netflix
Allow: /topics/notion
Allow: /topics/nvidia
Allow: /topics/one
Allow: /topics/openai
Allow: /topics/opendoor
Allow: /topics/oracle
Allow: /topics/palantir
Allow: /topics/patreon
Allow: /topics/pinterest
Allow: /topics/plaid
Allow: /topics/reddit
Allow: /topics/rippling
Allow: /topics/robinhood
Allow: /topics/salesforce
Allow: /topics/sap
Allow: /topics/scale-ai
Allow: /topics/servicenow
Allow: /topics/ses
Allow: /topics/shopify
Allow: /topics/snap
Allow: /topics/snowflake
Allow: /topics/softbank
Allow: /topics/spacex
Allow: /topics/spotify
Allow: /topics/startups
Allow: /topics/stripe
Allow: /topics/temu
Allow: /topics/tencent
Allow: /topics/tesla
Allow: /topics/tiktok
Allow: /topics/twitch
Allow: /topics/uber
Allow: /topics/venture-capital
Allow: /topics/walmart
Allow: /topics/warner-bros-discovery
Allow: /topics/waymo
Allow: /topics/wework
Allow: /topics/xai
Allow: /topics/youtube
# AI Training Bots
User-agent: Google-Extended
User-agent: GPTBot
Disallow: /
Allow: /$
Allow: /pro
Allow: /partners
Allow: /corporate
Allow: /newsletters
Allow: /about
Allow: /jobs
Allow: /events*
# Unknown Crawlers
User-agent: MauiBot
Disallow: /
- https://www.theinformation.com/sitemap-a...
- https://www.theinformation.com/sitemap-b...
- https://www.theinformation.com/sitemap-e...
- https://www.theinformation.com/sitemap-f...
- https://www.theinformation.com/sitemap-f...
- https://www.theinformation.com/sitemap-n...
- https://www.theinformation.com/sitemap-o...
- https://www.theinformation.com/sitemap-p...
- https://www.theinformation.com/sitemap-o...
- https://www.theinformation.com/sitemap-t...
- https://www.theinformation.com/sitemap-t...
- https://www.theinformation.com/sitemap-u...
- https://www.theinformation.com/sitemap-v...
A+Domain Intelligencetheinformation.com — via Network Solutions, LLC, 24 years, 7 months oldPASS
902 days
January 5, 2029
64 days
Issued by Google Trust Services
24 years, 7 months
Registered January 5, 2002
Not enabled
Protects against DNS spoofing
Unknown
2606:4700::6812:17b8
Network Solutions, LLC
Expiry timeline
Recommended actions
- Enable DNSSEC to protect visitors from DNS spoofing
- Enable registrar lock (clientTransferProhibited) to block unauthorized domain transfers
DNSSEC protects against DNS spoofing attacks. While not required, enabling DNSSEC adds an additional layer of security. Contact your DNS provider to enable it.
Without DNSSEC, an attacker who can poison your DNS can hijack your domain — and SSL certs alone don't stop them.
Learn more ▾ ▴
DNSSEC adds cryptographic signatures to DNS records, preventing forged responses from poisoning resolver caches. Without it, an attacker who controls the network path can redirect your domain to a malicious server before any HTTPS handshake happens. Most modern registrars (Cloudflare, Google Domains, Route 53) enable it with one toggle.
Source: ICANN / RFC 4033
The domain can be transferred without an unlock step. Enable registrar lock (clientTransferProhibited) in your registrar's control panel to protect against unauthorized or accidental transfers.
Without registrar lock, an attacker who phishes your registrar credentials can transfer the domain in minutes — total brand hijack.
Learn more ▾ ▴
Registrar lock (clientTransferProhibited, clientUpdateProhibited, clientDeleteProhibited) requires extra verification before any transfer/update/delete. Every major registrar offers it free. Combined with 2FA on your registrar account, it's the strongest defense against domain hijacking.
Source: ICANN / domain-security best practice