evides.nl

HTML metadata

Title: Thuis - Evides Drinkwater
Description: Wij leveren lekker en betrouwbaar drinkwater in het zuidwesten van Zuid-Holland, Zeeland en op de Brabantse Wal. Duurzaam en van hoge kwaliteit.
Language: nl
Canonical: https://www.evides.nl/

Open Graph

url: https://www.evides.nl/
title: Thuis
description: Wij leveren lekker en betrouwbaar drinkwater in het zuidwesten van Zuid-Holland, Zeeland en op de Brabantse Wal. Duurzaam en van hoge kwaliteit.

Technology

CDN: Azure Front Door
CMS: Nuxt
JS framework: Vue

Analytics

Google Tag Manager

Third-party hosts loaded (3)

assets-eu-01.kc-usercontent.com×6
www.googletagmanager.com×2
translate.google.com×1

Social

DNS records live

NS

ns1-05.azure-dns.com
ns2-05.azure-dns.net
ns3-05.azure-dns.org
ns4-05.azure-dns.info

MX

10 evides-nl.mail.protection.outlook.com

TXT

Show 7 TXT records

amazonses:mJGLXMPyOXkfznu2sU8E83pGNZ0wIx7wDCpQiji6gm4=
Cta82GwE+kbww+aArpjTQWv0p2nUvoYMkrPihdMV5ak=
a5b4u3go7fhg9dkjpih655v5vs
EWBC3GKW
mindmanager-verification=e37e06e84a431bd067e52ab5c9cd40742c84340c2be5f5208ef4bb450246eee3
B3CRNBDR
pZOYUr7vTVoDBr9DXSr/FvEk5AuEygqMt1ZltkWt/SSd3YK0BG8ebZiS4VW8nAN6Ey6fbSKmwR9NskqJUWncag==

Verified for

Apple
Atlassian
GlobalSign
Microsoft 365
Miro

Email authentication strong

SPF

not published

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@evides.nl,mailto:dmarc@pinewood.nl; ruf=mailto:dmarc@evides.nl,mailto:dmarc@pinewood.nl; fo=1

policy: quarantine

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrsFcGx2CFNJIp9K23+KYAW5bP40Q90ymU/WMBr9GMs06kJ750nhN1Rlk5Atz/Ma5KFNFDYz+SEl38ltIDs6…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBXGuX9PjNbMUGVm6CG3+6CFn0+mrGhqiea21HeqdnObVy/0ED593njGinYGm8dcFvStMaqUEro68jfgCt…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgk6Lk+wRkHceAUoBZvA1ORoDzWmtM0m1u2BBemHpQjzZB1c1YGD4MsgsZrMYGLKEGJcPexpNsvLmup5Or…

selectors probed

Certificates

Loading certificate

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.evides.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://app.kontent.ai/
permissions-policy: camera=(), microphone=(), midi=(), geolocation=(), usb=(), gyroscope=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.hotjar.com www.gstatic.com www.google.nl www.youtube-nocookie.com www.googletagmanager.com *.google.com *.googleapis.com *.googleoptimize.com *.google-analytics.com www.recaptcha.net evides.bbvms.com cdn.bluebillywig.com; worker-src 'self' blob:; connect-src 'self' wss: *.google-analytics.com *.hotjar.com *.gstatic.com *.hotjar.io *.google.com *.googleapis.com stats.g.doubleclick.net evides.bbvms.com cdn.bluebillywig.com d3vxkm6fxwz9yj.cloudfront.net; img-src 'self' *.kc-usercontent.com *.ytimg.com *.vimeocdn.com *.gstatic.com *.google.com *.googleapis.com *.google-analytics.com www.google.nl www.googletagmanager.com data: evides.bbvms.com stats.bluebillywig.com; style-src 'self' 'unsafe-inline' *.google.com *.googleapis.com *.gstatic.com; base-uri 'self'; frame-src 'self' *.maps.arcgis.com www.youtube-nocookie.com *.google.com *.hotjar.com chat.evides.nl player.vimeo.com www.recaptcha.net; frame-ancestors 'self' htt
strict-transport-security: max-age=31536000