delft.nl

HTML metadata

Title

Homepage | Gemeente Delft

Description

Officiële website van de gemeente Delft. Hier vindt u alle informatie, dienstverlening en nieuwsberichten van de gemeente Delft.

Language

nl

Canonical

https://www.delft.nl/homepage

Translations

nl

Technology

Server: Apache
CMS: Drupal

Third-party hosts loaded (1)

cdn.weglot.com×1

Social

Contact

Phone

Registration

Registrar

Registrar.eu

Created

1996-09-26

Updated

2025-07-11

Name servers

ns.delft.nl
ns2.as41887.eu
ns1.as41887.nl
ns4.as41887.it
ns3.as41887.io

DNS records live

NS

ns.delft.nl
ns1.as41887.nl
ns2.as41887.eu
ns3.as41887.io
ns4.as41887.it

MX

10 m1.delft.nl
10 m2.delft.nl

TXT

0Oqz3r8awxvvy0UG5RirvHpYrETl8prkAqlYixtqu5fQeKmNpXx9M16EsJdD2AlCalUGzGoAgkDNr/wZAZHFrg==
DomainVerification=VD2UQY8Z0RK72I1EMN5GLDRFMJJS3R8NBA82B5HQY8049QKE1Q6IOMSTD7K033Y8
aanmelder.nl-user=77019

Verified for

Apple
Atlassian
Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.delft.nl.eu-zs8zcn3l.e1.dspf.app -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:zs8zcn3l@ag.eu.dmarcadvisor.com,mailto:rapportages@dmarc.ibdgemeenten.nl,mailto:zs8zcn3l@ag.eu.dmarcmanager.one; ruf=mailto:zs8zcn3l@fr.eu.dmarcadvisor.com

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1Rkokr/7TzN5W2bL1e1h4QZLPSQivHYYX8vWPIJDZLj2I8r6pCMZel0vjfFMIApu+/GUJAdBIejDQGMIXOo…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDYsBS/gEWZmjHVhTm2ScdPRIUwlvxMSO8WkczvWW1WFRthxYhbhUKO5Kllm8Hb5Fy0ut9R7enOl/c8bzpAAR…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2026-05-19 to 2026-12-04

Expires in 186 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.delft.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; child-src 'self' *.youtube.com blob: *.youtube-nocookie.com *.vimeo.com; connect-src 'self' www.googletagmanager.com www.google-analytics.com https://delft1.expoints.nl *.siteimprove.com https://cdn.weglot.com https://cdn-api-weglot.com https://api.weglot.com; font-src 'self' data: *.googleusercontent.com https://delft1.expoints.nl https://cdn.expoints.nl https://stackpath.bootstrapcdn.com https://fonts.gstatic.com; frame-src 'self' *.youtube.com https://delft1.expoints.nl https://*.issuu.com/ *.youtube-nocookie.com *.vimeo.com *.siteimprove.com *.siteimproveanalytics.com *.siteimprove.net *.siteimproveanalytics.io page.report; img-src 'self' data: www.googletagmanager.com www.google-analytics.com https://www.toegankelijkheidsverklaring.nl https://delft1.expoints.nl https://www.openbasiskaart.nl https://helpdesk.kaartviewer.nl *.siteimprove.com *.servmetric.com *.govmetric.com *.siteimproveanalytics.io https://cdn.weglot.com; object-src 'none'; script-src 'self' www
strict-transport-security: max-age=31536000