fyrishov.se

.se crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 227 ms crawled 2026-06-02

SE · 85.24.159.61 · AS8473 Bahnhof AB

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

Fyrishov äventyrsbad och idrottshallar | Simskola & träningshallar

Description

Fyrishov är en av Sveriges mest besökta arenor. Verksamheten består av bad, idrott och event.

Language

sv-SE

Canonical

https://fyrishov.se/

Feeds

Fyrishov » Kommentarsflöde för Hem RSS

Open Graph

url: https://fyrishov.se/
title: Fyrishov äventyrsbad och idrottshallar | Simskola & träningshallar
locale: sv_SE
site name: Fyrishov
description: Fyrishov är Sveriges mest besökta arena och ett av Sveriges största besöksmål. Verksamheten består av bad, sport, event, möten och rekreation.

Technology

Server: Apache
CMS: WordPress
jQuery: 2.1.3 known XSS (<3.5)

Fonts

Google Fonts

Third-party hosts loaded (4)

ajax.googleapis.com×2
cookies.wasabiweb.se×1
fonts.gstatic.com×1
www.facebook.com×1

Social

Contact

Phone

+46187274950

DNS records live

NS

ns.bahnhof.net
pitea.dns.swip.net

MX

10 fyrishov-se.mail.protection.outlook.com

TXT

MS=6734BC5C22E412F4970D401BA1C0C0807B86BCC0

Verified for

GlobalSign
Google
Meta
Microsoft 365

Email authentication weak

SPF: v=spf1 include:eu.mailgun.org include:smtp2.empir.se include:spf.protection.outlook.com -all
strict (-all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-10-14 to 2026-10-29

Expires in 148 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://fyrishov.se/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
missing frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
permissions-policy: geolocation=(self), microphone=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' mailto: tel:; font-src https: data: blob:; img-src https: data: blob:; script-src https: 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval'; style-src https: 'unsafe-inline'; worker-src https: blob:; frame-ancestors 'self'; frame-src https: mailto: tel: blob:; connect-src https: blob:; media-src https: mediastream: blob:
strict-transport-security: max-age=31536000; includeSubDomains

Links to (5)

Linked from (1)

hejauppsala.com×1