Is salt.security safe to use as a vendor?

salt.security scored 88/100 on LynxRadar's security posture assessment. The domain meets baseline security requirements. 6 checks passed, 1 warnings, 1 critical issues across 8 passive checks including TLS, DMARC, security headers, breaches, and CVEs.

Does salt.security have security headers configured?

salt.security has 2 of 5 recommended security headers. Present: CSP, X-Frame-Options. Missing: X-Content-Type-Options, Referrer-Policy, Permissions-Policy.

salt.security Security Report — Grade B+ (88/100)

Q: What TLS version does salt.security use?

salt.security uses TLSv1.3 with TLS_AES_256_GCM_SHA384. TLSv1.3 negotiated with TLS_AES_256_GCM_SHA384 (256-bit). Strong configuration with no deprecated protocols or weak ciphers detected.

Q: Does salt.security have DMARC configured?

Yes. salt.security's DMARC policy is set to 'quarantine'. SPF record: yes. Strengths: DMARC policy set to quarantine; SPF record present with hard-fail (-all); DKIM configured (selectors: google, s1, s2). Issues: DMARC has no aggregate report URI (rua).

Q: Does salt.security use HSTS?

Yes. HSTS enabled: max-age=31536000 with includeSubDomains and preload. Meets best-practice configuration.

Q: Is salt.security's SSL certificate valid?

Yes. Strengths: Certificate valid, 48 days remaining; Issued by Google Trust Services.

Q: Does salt.security have DNSSEC enabled?

No. Strengths: 4 nameservers configured (ns3ghw.name.com., ns4kpx.name.com., ns1mpz.name.com., ns2fgv.name.com.); 5 MX records present; Zone transfers properly restricted. Issues: DNSSEC not configured — DNS responses can be spoofed.

B+ 88/100

salt.security

February 18, 2026 ·

1+ Warnings 6 Passed

AI Summary

salt.security scored 88/100, demonstrating a strong security posture. Minor improvements are noted below.

Critical gaps in: Security Headers. Positive signals: Known Breaches, DMARC / Email Security, TLS Configuration all passed.

2 action items identified, including 0 critical. The issues are configuration gaps, not architectural problems. A focused remediation effort of 2–5 days could address all findings.

Better than 81% of 2692 companies scanned.

081th pct100

A+

A-

B+

B-

C+

C-

D+

D-

B+

salt.security

88/100

Add missing security headers (X-Content-Type-Options, Referrer-Policy, Permissions-Policy)

1–2 hours

3 of 5 recommended security headers are missing on salt.security: X-Content-Type-Options, Referrer-Policy, Permissions-Policy. These headers protect against clickjacking, MIME-sniffing, and unauthorized browser feature access. Adding them is a server configuration change with no application code changes required.

PCI-DSS 4.0Req 6.4.1

Security headers are required application controls

OWASPSecure Headers

Recommended baseline for web applications

How to fix this

1Add: X-Content-Type-Options: nosniff

2Add: Referrer-Policy: strict-origin-when-cross-origin

3Add: Permissions-Policy: camera=(), microphone=(), geolocation=()

At a glance

Full data from this scan

TLS Version

TLSv1.3

TLSv1.3 negotiated with TLS_AES_256_GCM_SHA384 (256-bit). Strong configuration with no deprecated protocols or weak ciphers detected.

DMARC Policy

p=quarantine

Strengths: DMARC policy set to quarantine; SPF record present with hard-fail (-all); DKIM configured (selectors: google, s1, s2). Issues: DMARC has no aggregate report URI (rua).

SPF Record

Present

v=spf1 include:_spf.google.com include:mktomail.com include:mailgun.org include:mail.zendesk.com inc

Security Headers

2/5 present

Missing: X-Content-Type-Options, Referrer-Policy, Permissions-Policy

HSTS

Enabled

HSTS enabled: max-age=31536000 with includeSubDomains and preload. Meets best-practice configuration.

SSL Certificate

Valid

Strengths: Certificate valid, 48 days remaining; Issued by Google Trust Services.

DNSSEC

Not enabled

Strengths: 4 nameservers configured (ns3ghw.name.com., ns4kpx.name.com., ns1mpz.name.com., ns2fgv.name.com.); 5 MX records present; Zone transfers properly restricted. Issues: DNSSEC not configured — DNS responses can be spoofed.

Similar companies