indexo.dev

bakkerammerlaan.nl

.nl crawl

First seen 2026-05-29 · Last seen 2026-05-31 · ok HTTP/1.1 200 1730 ms crawled 2026-05-31

NL · 185.144.225.195 · AS20847 Previder B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Bakker Ammerlaan
Description
Bakker Ammerlaan is een familiebedrijf dat wordt geleid door de vierde generatie bakkers Ammerlaan. Het succes van Bakker Ammerlaan is mede te danken aan de inzet van 200 professionele medewerkers.
Language
nl
Canonical
https://www.bakkerammerlaan.nl/

Open Graph

url
https://www.bakkerammerlaan.nl/
title
Bakker Ammerlaan
locale
nl_NL
site name
Bakker Ammerlaan
description
Bakker Ammerlaan is een familiebedrijf dat wordt geleid door de vierde generatie bakkers Ammerlaan. Het succes van Bakker Ammerlaan is mede te danken aan de inzet van 200 professionele medewerkers.

Technology

Server
Powered
CMS
WordPress
jQuery
3.4.1 known XSS (<3.5)

Social

DNS records live

NS
  • ns1.shockmedia.nl
  • ns2.shockmedia.nl
  • ns3.shockmedia.nl
MX
  • 0 bakkerammerlaan-nl.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com a:mailrelay.layer23.nl include:_spf.shockmedia.email include:_spf.extravestiging.nl -all
strict (-all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

PerfectSSL
from 2026-05-04 to 2026-11-19
Expires in 171 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.bakkerammerlaan.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self), microphone=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.ytimg.com www.youtube.com *.vimeocdn.com www.google-analytics.com www.google.com maps.google.com maps.gstatic.com maps.googleapis.com https://ajax.googleapis.com https://code.jquery.com/ https://connect.facebook.net/ https://www.gstatic.com/ https://webshop.bakkerammerlaan.nl/ data: ; connect-src 'self' https://maps.googleapis.com https://www.facebook.com/ https://yoast.com/ ; img-src 'self' https://www.mollie.com/external/ www.google-analytics.com csi.gstatic.com maps.gstatic.com maps.google.com maps.googleapis.com *.twimg.com https://secure.gravatar.com https://cdn.rawgit.com *.doubleclick.net https://www.facebook.com/ https://webshop.bakkerammerlaan.nl/ https://*.w.org data: ; style-src 'self' 'unsafe-inline' fonts.googleapis.com ajax.googleapis.com; font-src 'self' fonts.googleapis.com fonts.gstatic.com https://*.alicdn.com data: ; frame-src 'self' https://www.google.com https://www.youtube.com https://player.vim
strict-transport-security
max-age=31536000

Links to (2)

Linked from (1)