aavu.fi

HTML metadata

Technology

CDN

Cloudflare

CMS

Next.js

JS framework

Next.js

Third-party hosts loaded (1)

• images.prismic.io×5

DNS records live

NS

• dale.ns.cloudflare.com
• mona.ns.cloudflare.com

MX

• 1 aspmx.l.google.com
• 10 alt3.aspmx.l.google.com
• 10 alt4.aspmx.l.google.com
• 5 alt1.aspmx.l.google.com
• 5 alt2.aspmx.l.google.com

TXT

• atlassian-sending-domain-verification=1b7edd70-d5de-4bf2-aad6-36acd6335d61

Verified for

• Google

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:amazonses.com include:_spf.atlassian.net include:19588175.spf06.hubspotemail.net ~all

softfail (~all)

DMARC

v=DMARC1;p=quarantine;pct=100;fo=1

policy: quarantine

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkcpNruFp7ByANZ/4m87qYdiqs6+N/XIVcfxZJ3UGpQN1+dcOfMCYXDrQYHLM+H0o3/4+vomrcNADbI…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://aavu.fi/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (1)

• loikka.io×1

Linked from (1)

• loikka.io×1