groups.be
groups.be
HTML metadata
Technology
- Server
- Group
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- d1l20vsu7pa1eb.cloudfront.net×5
- www.googletagmanager.com×1
DNS records live
- NS
-
- ns1.clf.proximus.be
- ns2.clf.proximus.be
- ns3.clf.proximus.be
- MX
-
- 5 mx1.hc2014-38.eu.iphmx.com
- 7 mx2.hc2014-38.eu.iphmx.com
- TXT
-
Show 11 TXT records
VoN3iu2NUqOhPFNGSIS58PP1LFlUcCWEeJIiyKtLCmOBicFUbA+D2uJeKusDOmOWVCI0DkA8HobLgyR+5L49hA==heyhack-verification=01990b11-9a19-79a1-9aad-901fd7389877ciscocidomainverification=4b6ee1e2d5f9f6a8d703f49ad630f1bdcfb0cb849ea0df4dda8a07a725611e54heyhack-verification=01990b11-9dee-75bc-ac2c-84c703db4850heyhack-verification=01990b11-9863-798f-80d7-6e02a3a7c6f6heyhack-verification=019abb46-21c2-70c7-a0a6-2da0722ff983heyhack-verification=01990b11-9e4f-7e59-97bd-134c65066949heyhack-verification=01990b11-98e8-7ac9-90e0-353dcfbf67b3mmEMzBrTtHV+cRscuT0QKqdz72tA5JFCu/ak6Y1HEKo=heyhack-verification=01990b11-a1fd-7a21-9e3e-f94ff42de8caheyhack-verification=01990b11-9d20-7e04-95a7-e5e5ad0e7d69
- Verified for
-
- Apple
- Atlassian
- Dynamics 365
Email authentication strong
- SPF
-
v=spf1 include:spf.groups.be include:spf.mailjet.com include:spf.protection.outlook.com include:spf.mandrillapp.com include:sendgrid.net exists:%{i}.spf.hc2014-38.eu.iphmx.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:dmarc-reports@groups.be,mailto:dmarc@06d20he6.uriports.com; ruf=mailto:dmarc-messages@groups.be,mailto:dmarc@06d20he6.uriports.compolicy: reject (enforced) - DKIM
-
Show 5 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC5cDKq8dfQFFTP7lRekUWXlRpjJJ/BDApbgE5MhQvprjffOk5CLcJIjcnjzKd6ajGM0U//T0ZgdtwS0c/+NB… - selector2:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvSLthlQR4gVDY6fsBSJ8XnWA9ohLNqCaP7x4wiN4qtKUfniXol232SMykYPttftuZXT2gaN37mOn0SuIS+c… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoodFOTA7hoo/4Lic8oXAwYhAmC7KWlWALr4Em0dFaqC33tCKiKGTkK8ocZEwJSd6FfvhNPnbMPdBDu4lUe7vL… - s2:
v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuPlFVpmz/wvpf/a7P7Sl7wmaXgkpNlhwLY3Pg55HrqvTfP38a3Do4HU1OvDAdUaLYE1Pb/lGdCgHMik1T1XH…
selectors probed - selector1:
Certificate (current)
GlobalSign RSA OV SSL CA 2018
Expires in 98 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
base-uri 'self'; connect-src 'self' *.googleapis.com *.bugsnag.com *.cloudfront.net *.spotify.com *.youtube.com *.googlevideo.com *.doubleclick.net *.openstreetmap.org *.azureedge.net *.dynamics.com *.mkt.dynamics.com *.googletagmanager.com *.googlesyndication.com *.google-analytics.com *.linkedin.com *.google.com *.clarity.ms *.microsoft.com *.cookiehub.eu; default-src 'self'; form-action 'self'; img-src 'self' *.gstatic.com *.cloudfront.net *.ytimg.com *.googleapis.com data: *.openstreetmap.org *.azureedge.net *.dynamics.com *.mkt.dynamics.com *.linkedin.com *.googletagmanager.com *.googlesyndication.com *.google.com *.facebook.com *.clarity.ms *.doubleclick.net *.google.be *.bing.com; media-src 'self' *.youtube.com *.googlevideo.com *.openstreetmap.org; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.cloudfront.net *.spotify.com *.youtube.com *.googlevideo.com *.doubleclick.net *.openstreetmap.org *.azureedge.net *.dynamics.com *.mkt.dynamics.co- strict-transport-security
max-age=31536000