fremia.se — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Fremia – för engagerade arbetsgivare
Description: Vi företräder 5 000 engagerade arbetsgivare inom kooperation, civilsamhälle och idéburen välfärd och erbjuder kollektivavtal, tjänster och påverkansarbete.
Language: sv
Canonical: https://www.fremia.se/

Open Graph

title: Fremia – för engagerade arbetsgivare
description: Vi företräder 5 000 engagerade arbetsgivare inom kooperation, civilsamhälle och idéburen välfärd och erbjuder kollektivavtal, tjänster och påverkansarbete.

Technology

CDN: Cloudflare

Fonts

Adobe Fonts

Third-party hosts loaded (3)

cdn-eu.readspeaker.com×1
cdn.cookietractor.com×1
use.typekit.net×1

Social

Contact

Email

info@fremia.se

Phone

08-702%2054%2000

DNS records live

NS

ns1.rrpproxy.net
ns2.rrpproxy.net
ns3.rrpproxy.net

MX

1 fremia-se.mail.protection.outlook.com

TXT

GS6NATEI3VBC3IDUMO8TH39F4C

Verified for

Apple
Cisco
Dynamics 365
Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.mandrillapp.com include:spf.protection.outlook.com include:sendgrid.net -all

strict (-all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6vRrOsYXGsh5olZCgHDdQAEEOkl8/QUdvlTmUKf1IvzW75NBf3K5MCo7xUdTZ6BIN+Ein8CJLuM1YD…

selectors probed

Certificate (current)

WE1

from 2026-04-13 to 2026-07-12

Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.fremia.se/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(self "https://www.youtube.com" "https://www.youtube-nocookie.com"), attribution-reporting=(), autoplay=*, bluetooth=(), browsing-topics=(), camera=(), compute-pressure=(), display-capture=(), encrypted-media=*, fullscreen=*, gamepad=(), geolocation=(), gyroscope=(self "https://www.youtube-nocookie.com" "https://www.youtube.com"), hid=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-create=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), storage-access=(), usb=(), web-share=(self "https://www.youtube-nocookie.com" "https://www.youtube.com"), window-management=(), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: child-src 'self'; connect-src 'self' https://*.lifeinside.io/ https://app-eu.readspeaker.com/ https://app.cookietractor.com https://cdn-eu.readspeaker.com/ https://cdn.jsdelivr.net/ https://cdnjs.cloudflare.com/ https://esp-eu.aptrinsic.com https://fremia.containers.piwik.pro/ https://fremia.piwik.pro https://maxcdn.bootstrapcdn.com/ https://media-eu.readspeaker.com/ https://rstts-eu.readspeaker.com; default-src 'self' https://*.lifeinside.io/; font-src 'self' data: https://*.cloudfront.net/graphik/ https://*.cloudfront.net/lato/ https://*.lifeinside.io/ https://use.typekit.net/; frame-src 'self' https://dashboard.find.episerver.net https://e.infogram.com/ https://infogram-download-eu.s3.eu-west-1.amazonaws.com https://open.spotify.com/ https://www.youtube-nocookie.com https://www.youtube.com/; img-src 'self' data: https://*.lifeinside.io/ https://i.ytimg.com/; script-src-elem 'self' 'unsafe-inline' https://*.lifeinside.io/ https://cdn-eu.readspeaker.com/ https://cdn.cookietractor.com/
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (3)

Linked from (2)

handelsradet.se×1
rimligavillkor.se×1