indexo.dev

elga-best.com

.com crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 663 ms crawled 2026-05-30

NL · 185.220.174.71 · AS206281 Stichting DIGI NL

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
ELGA is een groothandel in fournituren met meer dan 50.000 artikelen op voorraad tegen de scherpste prijzen. Discover more than 50,000 unique articles at ELGA Haberdashery. The best prices in the Benelux. Become a customer today and take advantage of great offers!
Description
Elga Haberdashery: The wholesale supplier for all your sewing essentials Are you an enthusiastic sewing lover, clothing adjuster, or clothing maker in search of a supplier for haberdashery? Choose Elga Haberdashery wholesale! You're at the right place with us! At Elga Haberdashery, you will find a wide range of high-quality sewing supplies, tools, and accessories.
Language
en

Technology

Server
Apache
CMS
Gatsby
PHP
8.2.29 security-only
Stack
PHP
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • static.addtoany.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

Registration

Registrar
CSL Computer Service Langenbach GmbH d/b/a joker.com
Created
2000-02-21
Expires
2027-02-21 265 days left
Updated
2025-07-10
Name servers
  • ns-3.eu
  • ns1.hix.nl
  • ns2.hix.nl

DNS records live

NS
  • ns-3.eu
  • ns1.hix.nl
  • ns2.hix.nl
MX
  • 10 mx1.distec.nl
Verified for
  • Google

Email authentication partial

SPF
v=spf1 a mx ptr:vmailservices.nl ip4:176.74.254.43 ip4:176.74.254.41 ~all
softfail (~all)
DMARC
v=DMARC1; p=none; sp=none;
policy: none (monitoring only) · sp=none
DKIM
  • mail: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1AWCMixZrWZnvJ/haaB91tvM8v7uGhvxOTSud2AY+Iu+HAOSqsO+3ky4KJAOcG18dEoGAYIrKSDm9…
selectors probed

Certificate (current)

E7
from 2026-04-02 to 2026-07-01
Expires in 31 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.elga-best.com/en/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com https://fonts.gstatic.com https://www.gstatic.com *.fontawesome.com https://fonts.bunny.net data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com https://*.google.com https:/

Links to (3)

Linked from (1)