bmf.no

HTML metadata

Technology

CDN

Cloudflare

CMS

Gatsby

Third-party hosts loaded (5)

• api.hcaptcha.com×1
• cdnjs.cloudflare.com×1
• hcaptcha.com×1
• js.hcaptcha.com×1
• newassets.hcaptcha.com×1

DNS records live

NS

• carlane.ns.cloudflare.com
• mike.ns.cloudflare.com

MX

• 0 bmf-no.mail.protection.outlook.com

Email authentication strong

SPF

v=spf1 include:_spf.intility.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:vxrgrjqy@ag.eu.dmarcadvisor.com;

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCzZguW3j6/3WpAVFzgepEtED8Z2b1YdQJBCQYxf0S6NctltfmEm5j5hKkt1mClCcMKosxRpIZ3beqcYSRUPp…
• smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://bmf.no/

present

• strict-transport-security
• x-frame-options
• x-content-type-options
• referrer-policy

findings

• missing Content Security Policy
• missing Permissions Policy

Linked from (4)

• fairplaybyggoslo.no×1
• bygghandverknorge.no×1
• ehandverk.no×1
• byggmesterforbundet.no×1