indexo.dev

destinationuppsala.se

.se crawl

First seen 2026-05-30 · Last seen 2026-05-31 · ok HTTP/1.1 200 98 ms crawled 2026-05-31

SE · 85.24.159.74 · AS8473 Bahnhof AB

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Upplev Uppsala – kultur, natur och nöjen - Destination Uppsala
Description
Upplev Uppsala och allt staden har att erbjuda – historiska sevärdheter, restauranger, aktiviteter, natur, evenemang och mycket mer.
Language
sv-SE
Generator
WPML ver:4.9.2.1 stt:1,50;
Canonical
https://destinationuppsala.se/

Open Graph

url
https://destinationuppsala.se/
title
Upplev Uppsala – kultur, natur och nöjen - Destination Uppsala
locale
sv_SE
site name
Destination Uppsala
description
Upplev Uppsala och allt staden har att erbjuda – historiska sevärdheter, restauranger, aktiviteter, natur, evenemang och mycket mer.

Technology

Server
Apache
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • static.rekai.se×4
  • cdn-eu.readspeaker.com×2
  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • ns1.p201.dns.oraclecloud.net
  • ns2.p201.dns.oraclecloud.net
  • ns3.p201.dns.oraclecloud.net
  • ns4.p201.dns.oraclecloud.net
MX
  • 5 destinationuppsala-se.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 ip4:88.131.97.142 ip4:178.21.131.158 ip4:85.24.159.74 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:b0001da763a3366@rep.dmarcanalyzer.com; ruf=mailto:b0001da763a3366@for.dmarcanalyzer.com; fo=1
policy: none (monitoring only)
DKIM
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCma8JQ1Y0ScSHS0sJGdOokeVuffdHsdakpyQDd8DR1R1dJjv8uRfhiPePKsNdZSPbMCEN8HnaKT/VG1vtfj2…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-24 to 2026-06-29
Expires in 28 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://destinationuppsala.se/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
geolocation=(self), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
default-src 'self' mailto: tel:; font-src https: data: blob:; img-src https: data: blob:; script-src https: 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval'; style-src https: 'unsafe-inline'; worker-src https: blob:; frame-ancestors 'self'; frame-src https: mailto: tel: blob:; connect-src https: blob:; media-src https: mediastream: blob:
strict-transport-security
max-age=31536000; includeSubDomains

Links to (7)

Linked from (3)