dexal.fi
dexal.fi
HTML metadata
Technology
- Server
- Apache
- CMS
- WordPress
- Fonts
-
- Google Fonts
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (3)
- fonts.googleapis.com×3
- fonts.gstatic.com×1
- www.youtube.com×1
Social
Registration
- Created
- 2007-10-10
- Name servers
-
- ns-fi.elisa.net [ok]
- ns-se.elisa.net [ok]
DNS records live
- NS
-
- ns-fi.elisa.net
- ns-se.elisa.net
Email authentication no MX
- SPF
-
v=spf1 -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:dmarcinfo@oriola.com; ruf=mailto:dmarcinfo@oriola.com; fo=1;policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 43 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; form-action 'self'; script-src 'self' 'nonce-Q5SV+3AeZn4cIBfdzfgPTw==' 'strict-dynamic'; style-src 'self' https://fonts.googleapis.com/ 'unsafe-inline'; font-src 'self' https://fonts.gstatic.com/; img-src 'self' https:; connect-src 'self' https://region1.google-analytics.com/ https://consentcdn.cookiebot.com/; frame-src 'self' https://consentcdn.cookiebot.com https://www.youtube.com https://www.googletagmanager.com https://oriola-brands.ssthosting.fi/; report-uri /wp-json/csp/v1/report;- strict-transport-security
max-age=31536000
Links to (5)
- tiktok.com×1
- oriola.com×1
- oivahymy.fi×1
- instagram.com×1
- facebook.com×1