indexo.dev

bejo.es

.es crawl

First seen 2026-05-03 · Last seen 2026-05-14 · ok HTTP/1.1 200 1533 ms crawled 2026-05-10

US · 151.101.66.191 · AS54113 Fastly, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Inicio | Bejo Spain
Language
es
Generator
Drupal 10 (https://www.drupal.org)
Canonical
https://www.bejo.es/
Translations
  • es

Technology

CDN
Fastly
CMS
Drupal
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • tracker.metricool.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
Calle del Hervidero, 15287

DNS records live

NS
  • ns1.supercp.com
  • ns2.supercp.com
  • ns3.supercp.com
  • ns4.supercp.com
MX
  • 10 bejo-es.mail.protection.outlook.com
TXT
  • dc/h4ThHH/FOAKPYqmwxr3SbLTUWjbS6+MscUsbAueMZdkg5iB4fsOIUdlylbIEVwniDjoHP4YboKppviE8kLQ==
  • ixon-site-verification=342ac7b55f9bc29c0af7f94351735e42
  • MS=ms85864067

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400
policy: quarantine · sp=none
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuGYmcb9+0KbXrQlUMhPxwumYyDogltT8bMjLWlLMN6aWIa1Q92wZtR2k/595lXDpo5skCyaiiMbHB…
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCfptKMskFM9r7g32//+hazEn1xaOVz3DsMvzxLPprWJANw4eAxQb29ytNSeuFg5jerSsFOFljMZ5G0Wr8/UE…
selectors probed

Certificate (current)

R13
from 2026-04-27 to 2026-07-26
Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.bejo.es/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
autoplay=self, bluetooth=(), camera=self, geolocation=self, microphone=self, midi=(), payment=self, serial=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com *.google.com https://www.gstatic.com https://static.addtoany.com https://cdn.cookielaw.org https://connexys-bejo.my.salesforce-sites.com *.fastly.net https://cdnjs.cloudflare.com https://connect.facebook.net *.licdn.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.gstatic.com https://cdnjs.cloudflare.com; img-src 'self' data: *.fastly.net https://www.google-analytics.com https://cdn.cookielaw.org https://tracker.metricool.com *.openstreetmap.org https://translate.google.com https://www.googletagmanager.com *.cookielaw.org https://connexys-bejo.my.salesforce-sites.com https://fonts.gstatic.com https://i.ytimg.com https://statics.teams.cdn.office.net *.facebook.net https://www.facebook.com *.linkedin.com; frame-src 'self' https://static.addtoany.com https://connexys-bejo.my.salesforce-sites.com https://resourcemanager-152a0cf8
strict-transport-security
max-age=31536000; includeSubDomains

Links to (8)

Linked from (4)