folksamlopension.se

HTML metadata

Technology

Server

baffin-bay-inlet

Cookie consent

• OneTrust

Third-party hosts loaded (2)

• assets.adobedtm.com×1
• cdn.cookielaw.org×1

Social

• facebook
• instagram
• youtube

Contact

Phone

• //0771414414

DNS records live

NS

• dns01.dipcon.com
• dns02.ports.se
• dns03.ports.se
• dns04.ports.net

MX

• 10 folksamlopension-se.mail.protection.outlook.com

TXT

• nHWHdnx0Cp0kwpmhj1E8PiHfhBt6iKSubl/cNrGxnojjlJkZbGnauaSrrXad6NQpBigCE0lNki7uECscATgx0Q==

Verified for

• Microsoft 365

Email authentication strong

SPF

v=spf1 mx include:spf.protection.outlook.com include:spf-a.telia.com include:spf-b.telia.com include:_spf.anpdm.com ip4:193.183.161.133 ip4:193.183.161.136 ip4:83.140.11.114 ip4:194.22.51.66 ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; pct=100; rua=mailto:mbox_dmarcreports@folksamlopension.se,mailto:dmarc_agg@vali.email; ruf=mailto:DMARC_Failure_Report@folksamlopension.se; fo=1

policy: reject (enforced)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwje5zVKyAUmaqJa10qQJN5ChmkI/PsAlrVkO6Nrp/c09oUWkIWwc0dcLqqWnJuUZBs6ikhar0zTka…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzZa1SzUpMAPNlKA2Ls1cclJorqUrLy1lXNgFum6bwe25lTVKg+QLtsZ2DwtC4AP5XrSgHGDuwo0wN…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.folksamlopension.se/

present

• strict-transport-security
• content-security-policy
• x-content-type-options
• referrer-policy

findings

• CSP uses wildcard sources
• missing frame protection
• missing Permissions Policy

Links to (5)

• youtube.com×1
• pensionsvalet.se×1
• instagram.com×1
• fora.se×1
• facebook.com×1

Linked from (1)

• pappers.se×1