indexo.dev

bozar.be

.be crawl

First seen 2026-05-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 7782 ms crawled 2026-05-16

IE · 52.215.88.119 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector entertainment type homepage

HTML metadata

Title
Centre for Fine Arts | Bozar Brussels
Description
Discover our cultural and artistic programme: concerts, exhibitions, film screenings, contemporary dance and theatre performances, talks and guided tours
Language
en
Generator
Drupal 10 (https://www.drupal.org)
Canonical
https://www.bozar.be/en/splash

Open Graph

url
https://www.bozar.be/en/splash
title
Centre for Fine Arts | Bozar Brussels
locale
en_BE
sitename
Bozar Brussels
description
Discover our cultural and artistic programme: concerts, exhibitions, film screenings, contemporary dance and theatre performances, talks and guided tours

Technology

CMS
Drupal
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • script.crazyegg.com×1
  • www.googletagmanager.com×1

DNS records live

NS
  • ns1.clf.proximus.be
  • ns2.clf.proximus.be
  • ns3.clf.proximus.be
MX
  • 10 bozar-be.mail.protection.outlook.com
TXT
Show 9 TXT records
  • MS=ms15244990
  • amazonses:DjyjgmyGkACdhGGpv/GuwQ6Cp2OXEWCHUgG0TcPZQZg=
  • apple-domain-verification=k2BrayEF0KZ7LzwL
  • brevo-code:3cfe2969c56b38599298d274f798917d
  • facebook-domain-verification=sw00zeby73aeytvgkephdix7jv01lb
  • google-site-verification=UeoGrF9PWbCSUHvIP2GR5_zm93VLXoynFWZSn4dE6Cw
  • openai-domain-verification=dv-jboNr5mfF2MkturNhKNq3JTP
  • spf2.0/pra include:spf.flexmail.eu ?all
  • 2txWpa0VTmnl18s8HFBxWNFNopNMzwtLO9a6ZK2mXPO144s3rXWsMeG21SzRr6TRS/LyLPM9ZlLqG1By8xxKsg==

Email authentication partial

SPF
v=spf1 ip4:185.111.57.5 include:spf.flexmail.eu include:spf.protection.outlook.com include:_spf.google.com include:_spf.exonet.nl include:spf.secutix.com include:_spf.odoo.com -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; rua=mailto:dmarc@bozar.be,mailto:rua@dmarc.brevo.com; ruf=mailto:dmarc@bozar.be; rf=afrf; pct=100; ri=86400
policy: none (monitoring only) · sp=none
DKIM
  • default: v=DKIM1;r=postmaster;g=*;k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCgMiURkWTHnmuGnPkdFMhjiT/ywiI+4ONMd73rDMHp7b0NQQb8lB1cIjbtbIsxJen7jQ…
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQClmvmLgBsrOjiAdGVU9p45GYnMIX3noF+NQdqTaeIVx8g2Qv1nX5i9gLnZanaMDDKQ9Zmwcjsa7uFUSNVvjT…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1gfowfeN55/dR+OeNKHpcJCdw8wsX1OjRHWfGZEnpzUQ/7KqZjgQYsIzpv/sunT9xZW1xR93ctaNPj…
  • mail: v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLtEPet2JD18+7WP4VHzKbfu10SfOk80GyhdnMt75DNA305/DsQc2F8/e/BUE/sUtHV2…
selectors probed

Certificate (current)

GEANT TLS RSA 1
from 2025-11-19 to 2026-11-19
Expires in 184 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bozar.be/splash?destination=/node/2883

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' https://*.bozar.be https://*.secutix.com
strict-transport-security
max-age=31536000; includeSubDomains; preload
content-security-policy-report-only
default-src 'self'; child-src 'none'; connect-src 'self' https://*.bozar.be https://*.contentsquare.net https://*.facebook.com https://*.google-analytics.com https://*.onetrust.com https://*.recombee.com https://*.secutix.com https://*.visualwebsiteoptimizer.com https://*.vwo.com https://o419740.ingest.sentry.io/api/5336472/envelope/; font-src 'self' https://fonts.gstatic.com; frame-src 'self' https://*.googletagmanager.com https://*.google.com https://*.matterport.com https://*.soundcloud.com https://*.spotify.com https://*.vimeo.com https://*.youtube.com; img-src 'self' https://*.cookielaw.org https://*.facebook.com https://*.googletagmanager.com https://*.vimeocdn.com; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.bozar.be https://*.hotjar.com https://*.cookielaw.org https://*.contentsquare.net https://*.googletagmanager.com cdn.jsdelivr.net https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://script.crazyegg.com https://unpkg.com; script-src-

Linked from (9)