indexo.dev

davobieren.nl

.nl crawl

First seen 2026-06-03 · Last seen 2026-06-04 · ok HTTP/1.1 200 372 ms crawled 2026-06-04

US · 104.21.5.251 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

sector food type homepage

HTML metadata

Title
Brouwerij en proeflokalen | DAVO Bieren
Description
DAVO staat voor goed bier. En erachter. Kom langs bij één van onze proeflokalen in Deventer, Arnhem, Zwolle of Twello.
Language
nl

Technology

CDN
Cloudflare
CMS
Gatsby
PHP
8.3.28 security-only
Stack
PHP
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • www.googletagmanager.com×2
  • cdn.jsdelivr.net×1
  • chimpstatic.com×1

Social

DNS records live

NS
  • gannon.ns.cloudflare.com
  • stevie.ns.cloudflare.com
MX
  • 0 davobieren-nl.mail.protection.outlook.com
TXT
  • MS=9F8D2411D50BB29CDF082A341F8A476CB2222176
Verified for
  • Brevo
  • Google

Email authentication partial

SPF
v=spf1 a mx ip4:195.211.72.0/22 ip4:141.138.168.0/21 ip6:2a03:3c00:a001::/48 ip6:2a03:3c00:a002::/48 include:servers.mcsv.net include:spf.sendinblue.com include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:security@davobieren.nl; ruf=mailto:security@davobieren.nl
policy: none (monitoring only)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD2Lh3inbge58e0R5wl4tUpbq1Oe73rXyzZeHc5F3UV1Z4bzKTF3jdtHJj102LGg+tmMWxgDBZW9S0Jj6u4om…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

E8
from 2026-05-28 to 2026-08-26
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://davobieren.nl/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com https://www.gstatic.com https://fonts.gstatic.com *.fontawesome.com https://fonts.bunny.net data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.c

Links to (6)

Linked from (1)