cultuurloketdigitall.nl
cultuurloketdigitall.nl
HTML metadata
Technology
- CMS
- WordPress
- jQuery
- 3.7.1
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (4)
- cdnjs.cloudflare.com×3
- fonts.bunny.net×2
- www.googletagmanager.com×2
- gmpg.org×1
Social
DNS records live
- NS
-
- ns1.argewebhosting.eu
- ns2.argewebhosting.com
- ns3.argewebhosting.nl
- MX
-
- 1 cultuurloketdigitall-nl.mail.protection.outlook.com
Email authentication strong
- SPF
-
v=spf1 include:mail.argewebhosting.nl include:_spf.exonet.nl include:spf.protection.outlook.com ip4:178.22.63.101 ip6:2a00:1e28:3:a027::1 include:sendgrid.net include:_spf.salesforce.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@vxcompany.uriports.com; ruf=mailto:dmarc@vxcompany.uriports.com; fo=1:d:spolicy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsI4gt8oTYvQmoZ3JC6TRGcgCQe2X/XndBbpKv2aWwQ2/3E+C0gLXnkJiF7M+FtXhzpjKRkqfS5bpVQ… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZq8tbWgDOzMN0sxeGh+X6fFh/emB+9sUsWttyuRtF3LO7OknLN6Gz9m1UCIfinepRId2SysthDWlVH5IU… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUd6z7E7n5djmvoUDRoBzxIeM+lCJMGVaOQlUKRGG8yezbo8MRDf6axigOvwC74pTAvtlGKTXIGAnIMpJh…
selectors probed - selector1:
Certificate (current)
E7
Expires in 42 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP uses wildcard sources
- missing frame protection
Header values
- referrer-policy
strict-origin-when-cross-origin- permissions-policy
accelerometer=(self), autoplay=(*), bluetooth=(), camera=(), ch-dpr=(), ch-save-data=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), fullscreen=(*), gamepad=(), geolocation=(self), gyroscope=(self), hid=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self "https://www.youtube.com"), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(self), usb=(), window-management=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self';connect-src 'self' https://scarif.lyfter.nl https://maps.lyfter.nl https://google.com https://*.google-analytics.com https://*.analytics.google.com https://*.googletagmanager.com https://*.googlesyndication.com https://*.googleapis.com https://*.google.com https://*.google.nl https://*.gstatic.com https://*.doubleclick.net https://*.fontawesome.com https://cdn.plyr.io https://*.timeblockr.com https://*.timeblockr.cloud https://noembed.com https://*.tawk.to wss://*.tawk.to https://*.facebook.com https://*.facebook.net https://*.leadinfo.net https://*.leadinfo.com https://in.logtail.com https://*.browsealoud.com https://*.speechstream.net https://*.hotjar.com https://*.hotjar.io wss://*.hotjar.com https://cdn.linkedin.oribi.io https://*.visualstudio.com https://*.clarity.ms https://*.tiktok.com https://*.amazonaws.com https://*.recras.nl https://*.hubspot.com https://*.hubapi.com https://*.hs-banner.com https://*.hsforms.com https://*.hsforms.net https://*.hscollectedf- strict-transport-security
max-age=31536000