appelscha.nl

HTML metadata

Technology

Server

nginx

CMS

WordPress

jQuery

3.7.1

Fonts

• Google Fonts

Third-party hosts loaded (2)

• fonts.gstatic.com×1
• maps.googleapis.com×1

Social

• facebook
• instagram
• youtube

DNS records live

NS

• nitin.ns.cloudflare.com
• sima.ns.cloudflare.com

MX

• 10 mx1.emailsrvr.com
• 20 mx2.emailsrvr.com

Verified for

• Google

Email authentication partial

SPF

v=spf1 a mx ip4:141.138.198.198 ip6:2a02:348:7d:c6c6::1 include:_spf.cms-point.nl include:emailsrvr.com include:spf.bramix.nl ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:appelscha.nl@dmarc-report.eprov.eu

policy: none (monitoring only)

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://appelscha.nl/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• CSP allows unsafe inline scripts/styles
• missing Permissions Policy

Links to (5)

• youtube.com×1
• wierengareclame.nl×1
• ooststellingwerf.nl×1
• instagram.com×1
• facebook.com×1

Linked from (3)

• ooststellingwerf.nl×1
• boscampingappelscha.nl×1
• fietsverhuurappelscha.nl×1