danone.dk

HTML metadata

Title

Home - Danish

Language

da-DK

Generator

WordPress 6.8.1

Feeds

Danish » Feed RSS
Danish » Comments Feed RSS

Open Graph

url: https://danone.dk/
title: Home - Danish
locale: da_DK
site name: Danish
description: Med regenerativt landbrug giver vi landmændene teknisk og økonomisk støtte til at hjælpe dem med at indføre metoder, der er gode for vand, jord og biodiversitet.

Technology

CDN: Amazon CloudFront
Server: Apache
CMS: WordPress

Analytics

Google Tag Manager

Cookie consent

OneTrust

Third-party hosts loaded (5)

smartmedia.digital4danone.com×13
www.danone.com×5
cdn.cookielaw.org×1
www.google.com×1
www.googletagmanager.com×1

Social

DNS records live

NS

udns1.cscdns.net
udns2.cscdns.uk

MX

10 virascanner.virascan.dk

TXT

google-site-verification=jcBE3mU2jQLefcdsrc8Sc9fu-XQK-zft4hxbwLverHA

Email authentication strong

SPF: v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
strict (-all)
DMARC: v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA OV R36

from 2026-04-03 to 2026-10-19

Expires in 152 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://danone.dk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
weak content type protection

Header values

referrer-policy: strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options: DENY, SAMEORIGIN
permissions-policy: accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()
x-content-type-options: nosniff, nosniff
content-security-policy: frame-ancestors 'none', default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://www.google-analytics.com https://cdn.cookielaw.org https://*.onetrust.com https://cdnjs.cloudflare.com https://danone.no https://danone.se https://danone.dk https://danone.fi https://danone.ee https://danone.lv https://danone.lt https://danone.no/ https://danonecorp-norbal-se-staging.hive.digital4danone.com/ https://danonecorp-norbal-dk-staging.hive.digital4danone.com/ https://danonecorp-norbal-ee-staging.hive.digital4danone.com/ https://danone.lv/ https://danone.lt/ https://www.google.com https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://cdn.cookielaw.org https://*.onetrust.com; img-src 'self' data: https: https://*.onetrust.com; font-src 'self' https: data:; connect-src 'self' https: https://*.onetrust.com https://*.cookielaw.org https://www.google-analytics.com https://www.google.com https://www.gstatic.com; media-src 'self' https:; wor
strict-transport-security: max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy: unsafe-none
cross-origin-embedder-policy: unsafe-none; report-to='default'
cross-origin-resource-policy: cross-origin