gedichtgpt.nl
HTML metadata
Technology
- Server
- nginx
- Stack
- Django
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (5)
- media.ulazai.com×4
- cdn.jsdelivr.net×2
- www.googletagmanager.com×2
- analytics.ahrefs.com×1
- challenges.cloudflare.com×1
DNS records live
- NS
-
- brynne.ns.cloudflare.com
- etienne.ns.cloudflare.com
Email authentication no MX
- SPF
-
v=spf1 a mx -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; sp=reject; adkim=s; aspf=spolicy: reject (enforced) · sp=reject - DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 29 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
same-origin- x-frame-options
DENY- permissions-policy
camera=(), microphone=(), geolocation=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'nonce-2uBorCQ_iREFgFIVS8VPtA' https:; style-src 'self' 'nonce-2uBorCQ_iREFgFIVS8VPtA' https:; style-src-elem 'self' 'nonce-2uBorCQ_iREFgFIVS8VPtA' https:; style-src-attr 'unsafe-inline'; img-src 'self' data: https:; font-src 'self' data: https:; connect-src 'self' https:; frame-src 'self' https:; base-uri 'self'; form-action 'self' https:;- strict-transport-security
max-age=31536000- cross-origin-opener-policy
same-origin
Links to (3)
- wa.me×1
- ulazai.com×1
- mijnkleurplaat.nl×1