event-informatie.nl
HTML metadata
Technology
- Server
- nginx
- CMS
- Gatsby
Registration
- Registrar
- team.blue nl B.V.
- Created
- 2018-03-04
- Updated
- 2020-12-28
- Name servers
-
- ns1.dn-s.nl
- ns2.dn-s.nl
- ns4.dn-s.nl
- ns3.dn-s.nl
DNS records live
- NS
-
- ns1.dn-s.nl
- ns2.dn-s.nl
- ns3.dn-s.nl
- ns4.dn-s.nl
- MX
-
- 10 momice.email
- Verified for
-
- Brevo
Email authentication partial
- SPF
-
v=spf1 a mx a:webmail.momice.email include:spf.sendinblue.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400policy: none (monitoring only) · sp=none - DKIM
-
- mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed - mail:
Certificate (current)
R12
Expires in 35 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
origin-when-cross-origin- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
default-src 'none'; script-src * 'self' 'unsafe-inline' 'unsafe-eval'; style-src * data: 'unsafe-inline'; img-src * data: blob:; frame-src *; font-src * 'self' data:; connect-src *; media-src *;- strict-transport-security
max-age=31536000