Is fsf.org legit?

45
/ 100
Use Caution
Industry: Nonprofit

While the Free Software Foundation (fsf.org) usually represents a legitimate, long-standing organization, its website is currently unreachable due to severe technical issues. This makes it impossible to verify its current content or purpose, raising significant concerns about its operability and security.

Nonprofit average: 81/100 · based on 19 sites

Checked: April 18, 2026 at 8:08 AM UTC · Refresh

Is fsf.org a scam? Here's what we found.

Security 20/100

This is the biggest red flag: the site cannot establish an HTTPS connection, making any interaction inherently insecure. While Google Web Risk reports it as clean, the inability to access it securely overrides this positive signal.

Identity 90/100

The domain is incredibly old, dating back to 1991, and is registered through a reputable registrar. This longevity strongly suggests a well-established entity, consistent with what is publicly known about the Free Software Foundation.

Reputation 70/100

The domain's age and high Tranco rank point to a historically reputable site. However, the current unreachability casts a shadow over its immediate reputation, as users cannot access its services or information.

Transparency 60/100

The missing favicon is a minor detail, but the site's overall unreachability means we cannot assess its transparency through content like 'about us' pages or contact info, which is critical for a nonprofit.

Compliance 50/100

Without being able to access the site, it's impossible to check for essential compliance elements like privacy policies or terms of service. This is a significant gap given the site's historical prominence.

Infrastructure 30/100

The core problem is the site's unreachability, indicating a fundamental server or network failure. While DNS records, email configurations, and SPF/DMARC are otherwise well-configured, they are irrelevant if the site itself cannot be loaded.

Signals Detected

[+]
Tranco Rank: Rank #6321

This is a well-known, high-traffic website

[-]
Website: Unreachable

Could not load website: Get "https://www.fsf.org/": remote error: tls: handshake failure

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[~]
Branding: Missing

No favicon found — unusual for an established business

[~]
Site Reachable: Unreachable

Could not reach site: Head "https://fsf.org": remote error: tls: handshake failure

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Domain Age: 35 years, 8 months

Domain created 1991-02-01T05:00:00Z (35 years, 8 months ago)

[?]
Registrar: Gandi SAS

Registered through Gandi SAS

[+]
Domain Expiry: 2027-02-02T05:00:00Z

Expires in 289 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[-]
SSL/TLS: No HTTPS

Could not establish TLS connection: remote error: tls: handshake failure

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
robots.txt: Not found

No robots.txt file — common for small sites

[+]
DNS Resolution: 2 IP(s)

Resolves to: 2001:470:142:4::a, 209.51.188.174

[+]
Email (MX Records): 1 record(s)

Mail servers: mail.fsf.org.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 3 server(s)

DNS providers: ns4.gnu.org., ns2.gnu.org., ns1.gnu.org.

[?]
Sitemap: Not found

No sitemap found — common for smaller sites

[?]
Web Archive: Unable to check

Could not query Wayback Machine

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for fsf.org
<a href="https://verified.fyi/review/fsf.org"><img src="https://verified.fyi/badge/fsf.org?size=medium&style=full&theme=dark" alt="fsf.org trust score — verified.fyi" /></a>
[![fsf.org trust score](https://verified.fyi/badge/fsf.org?size=medium&style=full&theme=dark)](https://verified.fyi/review/fsf.org)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating a nonprofit like the Free Software Foundation (fsf.org), we look for a combination of long-standing online presence, clear mission statements, and robust infrastructure to ensure they can effectively serve their community. A crucial component for any modern website, especially one responsible for advocating for software freedom, is its availability and security. Historically, fsf.org has been a cornerstone of the free software movement, and its domain age of over 35 years reflects this legacy. Most legitimate nonprofits maintain their online presence meticulously, ensuring their websites are always accessible and secure. However, our current assessment reveals a critical issue: fsf.org is unreachable due to a TLS handshake failure, meaning it cannot be accessed securely or at all. This is deeply concerning for an organization that relies heavily on its digital platform for outreach, resources, and community engagement. While its email infrastructure appears solid, a non-functional website severely hinders its ability to operate and communicate with the public. Until these fundamental access issues are resolved, potential visitors should exercise caution, as they cannot verify the site's current content or engage with it securely.