binnebuite.nl
binnebuite.nl
HTML metadata
Technology
- Server
- nginx
- Stack
- PHP
- Fonts
-
- Font Awesome
- Google Fonts
Third-party hosts loaded (2)
- fonts.googleapis.com×2
- use.fontawesome.com×1
Contact
- Phone
DNS records live
- NS
-
- ns1.hosting2go.nl
- ns2.hosting2go.nl
- MX
-
- 30 binnebuite.nl
Email authentication weak
- SPF
-
v=spf1 include:spf.hosting2go.nl -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV E36
Expires in 178 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google.com https://*.gstatic.com https://*.google-analytics.com https://platform.linkedin.com https://connect.facebook.net https://platform.twitter.com https://cdn.syndication.twimg.com; connect-src 'self' https://www.kycosoftware.com https://*.googleusercontent.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com https://platform.twitter.com https://ton.twimg.com; font-src 'self' https://fonts.gstatic.com https://use.fontawesome.com; img-src 'self' data: https://*.google-analytics.com https://*.twitter.com https://*.paypalobjects.com https://*.twimg.com https://*.googleusercontent.com https://abc.xyz; frame-src 'self' *;