folkemoedet.dk
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Nuxt
- JS framework
- Nuxt
- Analytics
-
- Cloudflare Insights
Third-party hosts loaded (1)
- static.cloudflareinsights.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- kami.ns.cloudflare.com
- martin.ns.cloudflare.com
- MX
-
- 10 folkemoedet-dk.mail.protection.outlook.com
- Verified for
-
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 include:spf.protection.outlook.com include:spf.mandrillapp.com include:spf1.venuemanager.net ip4:80.63.104.65 -allstrict (-all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed - k2:
Certificate (current)
WE1
Expires in 84 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer- x-frame-options
SAMEORIGIN- permissions-policy
camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()- x-content-type-options
nosniff- content-security-policy
base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self' https://cms.folkemoedet.dk https://cms.folkemoedet.dk; img-src 'self' data: https://ffmcrmimagestorage.blob.core.windows.net https://folkemoedet.dk https://*.folkemoedet.dk https://www.facebook.com https://connect.facebook.net https://www.google-analytics.com; object-src 'none'; script-src-attr 'unsafe-hashes' 'sha256-bwK6T5wZVTANitXbrTsel7kl/PyCjCd/Dq5Qoz3imjM='; style-src 'self' https: 'unsafe-inline'; script-src 'strict-dynamic' 'nonce-ub3zY218d93DtmJi/EFNk1Ly'; upgrade-insecure-requests; media-src 'self' data: https://ffmcrmimagestorage.blob.core.windows.net https://folkemoedet.dk https://*.folkemoedet.dk; connect-src 'self' https://*.folkemoedet.dk https://www.facebook.com https://graph.facebook.com https://www.google-analytics.com https://analytics.google.com https://region1.google-analytics.com https://static.cloudflareinsights.com;- strict-transport-security
max-age=15552000; includeSubDomains- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
credentialless- cross-origin-resource-policy
same-origin
Links to (50)
- zetland.dk×1
- ungdomsskoleforeningen.dk×1
- ulobby.eu×1
- tuborgfondet.dk×1
- taxa.dk×1
- tandlaegeforeningen.dk×1
- sbfonden.dk×1
- rudpedersen.com×1
- regioner.dk×1
- primetime.dk×1
- pressconnect.dk×1
- portofroenne.com×1
- politiken.dk×1
- pfa.dk×1
- operate.dk×1
- oakfnd.dk×1
- novonordiskfonden.dk×1
- nnf.dk×1
- madkulturen.dk×1
- list-manage.com×1
- linkedin.com×1
- lf.dk×1
- lederne.dk×1
- larsenslegat.dk×1
- ku.dk×1
- kl.dk×1
- itsafact.dk×1
- instagram.com×1
- information.dk×1
- holm.dk×1
- hojskolerne.dk×1
- gts-net.dk×1
- greenpowerdenmark.dk×1
- gknordic.com×1
- friluftsraadet.dk×1
- forteadvice.com×1
- forsvaret.dk×1
- fogp.dk×1
- finansdanmark.dk×1
- fho.dk×1
- fday.dk×1
- facebook.com×1
- europa.eu×1
- esg365.dk×1
- engineerthefuture.dk×1
- efterskolerne.dk×1
- dxc.com×1
- duf.dk×1
- dat.dk×1
- danskindustri.dk×1