carglass.be
HTML metadata
Technology
- CDN
- Amazon CloudFront
- Server
- openresty
- JS framework
- Angular 19.2.20
Social
Contact
- Phone
DNS records live
- NS
-
- dns1.cscdns.net
- dns2.cscdns.net
- MX
-
- 0 carglass-be.mail.protection.outlook.com
- TXT
-
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76yojh54Xu3uSbQ3JP0A7k8o8GutRF8zbFUA8n0ZH2y0cIEjMliXY4W4LwPA7m4q0ObmvSjhd63O9d8z1XkUBwIDAQAB
- Verified for
-
- Apple
- DocuSign
- Meta
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 ip4:18.194.245.84 ip4:84.198.246.118 ip4:84.198.254.182 ip4:213.251.64.162 ip4:137.116.193.77 ip4:13.94.240.69 ip4:40.68.120.236 ip4:198.21.6.129 ip4:52.232.19.18 ip4:84.199.86.221 ip4:84.199.86.217 ip4:84.199.86.244 ip4:84.199.86.245 a:smtp.vanboxtel.hosting a:c.spf.service-now.com include:spf.protection.outlook.com include:_spf.eu.mailgun.org include:spf.planoncloud.com include:servers.mcsv.net include:4604749.spf10.hubspotemail.net include:_spf.psm.knowbe4.com include:spf.steam-connect.com -allstrict (-all) - DMARC
-
v=DMARC1;p=nonepolicy: none (monitoring only) - DKIM
-
Show 5 DKIM selectors
- selector2:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3BfhIO+yMfIrZGg0rM7+NrkR7zJWYe1q2Fwz3A0lplHLEI3BcFCl0ZYE5GgD/q29rM2PZGxM06eKKvUPiMx… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2v2on0NkXUhBqdCmtBrIcKHgEZOypSYjdb01h91Bk3a7xORJt5OPBqhyeHgATXFTloy5crvFU0rVZNt6+1… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCdseWXtw1OaBncQpuNBow4CY1I6ATs8UfWMR0fNQBWeKoRsXXNSPkrB0nxizc/8p90Qkf3qLRj/b7ms4bWrYDLQe… - smtpapi:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed - selector2:
Certificate (current)
Amazon RSA 2048 M01
Expires in 186 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(self "https://*.ewp.belron.com" "https://api.woosmap.com"),midi=(),sync-xhr=(self "https://*.ewp.belron.com" "https://rum.browser-intake-datadoghq.eu"),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"),payment=()- x-content-type-options
nosniff- content-security-policy
connect-src 'self' https://olb-assets-ewp-euc1-prd.s3.eu-central-1.amazonaws.com *.ewp.belron.com https://cta-service-cms2.hubspot.com https://forms.hubspot.com https://api.hubapi.com https://collect-eu-central-1.tealiumiq.com https://osms.carglass.be https://logx.optimizely.com https://ampcid.google.com https://ampcid.google.be https://www.facebook.com https://staticw2.yotpo.com https://w2.yotpo.com https://cdn.cookielaw.org https://conductor.clicktale.net https://www.google-analytics.com http://*.hotjar.com:* https://*.hotjar.com:* https://vc.hotjar.io:* wss://*.hotjar.com https://tapi.optimizely.com https://s7.addthis.com https://apollo.carglass.be https://bat.bing.com https://bat.bing.net *.bing.com *.bing.net https://m.addthis.com https://europe-west1-carglass-be-dlp.cloudfunctions.net https://stats.g.doubleclick.net https://privacyportal-eu.onetrust.com https://api.yotpo.com https://api-iam.intercom.io wss://nexus-websocket-a.intercom.io https://vimeo.com https://api.intercom.io- strict-transport-security
max-age=31536000; preload