indexo.dev

haltdalensparebank.no

.no crawl

First seen 2026-05-27 · Last seen 2026-05-30 · ok HTTP/1.1 200 783 ms crawled 2026-05-30

US · 159.60.133.137 · AS35280 F5 Networks SARL

Reputation 100/100

Classifying

HTML metadata

Title
Haltdalen Sparebank
Description
bank forsikring sparing fond bli kunde lån boliglån billån forbrukslån refinansiering lånesøknad bankkort kredittkort personforsikring skadeforsikring bankid nettbank BSU avtalegiro eFatura
Language
nb-NO
Canonical
https://www.haltdalensparebank.no/

Open Graph

url
https://www.haltdalensparebank.no/
title
Haltdalen Sparebank
locale
nb-NO
description
bank forsikring sparing fond bli kunde lån boliglån billån forbrukslån refinansiering lånesøknad bankkort kredittkort personforsikring skadeforsikring bankid nettbank BSU avtalegiro eFatura

Technology

Server
volt-adc
Stack
ASP.NET
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • app.eika.no×1
  • static.xx.fbcdn.net×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • dns1.cscdns.net
  • dns2.cscdns.net
MX
  • 10 mxa-00727601.gslb.pphosted.com
  • 10 mxb-00727601.gslb.pphosted.com
TXT
  • 7ea7302439c4ed6d7803a78c723a1ba1ec5b05f5a968bd3e0b4603332afc0c40
  • DomainVerification=1YDQ8PLKT0FRAU3OSOO5HNG51HZ7VE58HGL9708RVU9KQOXBLPFP2W3FKCPAZRK9
Verified for
  • Atlassian
  • Dynamics 365
  • Microsoft 365

Email authentication strong

SPF
v=spf1 mx a ip4:195.159.29.211 include:spf-00727601.pphosted.com include:spf.protection.outlook.com include:_spf.sndr.no include:_spf.papirfly.no include:spf.hatteland.com ip4:139.116.71.0/24 ip4:139.116.71.0/25 ip4:139.111.201.0/29 ip4:193.162.109.0/24 ip4:212.18.128.0/24 ip4:146.192.49.0/24 ip6:2a02:9c8:0:1001::/64 -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Buypass Class 3 CA 2
from 2025-10-13 to 2026-06-29
Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.haltdalensparebank.no/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SameOrigin
x-content-type-options
nosniff
content-security-policy
default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google.com https://*.gstatic.com *.googleapis.com https://app.eika.no/infrastruktur-styleguide-web/ https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://eika.piwik.pro/ppms.js https://svc.kundedialog.eika.no/t/w https://mktdplp102cdn.azureedge.net/public/latest/js/form-loader.js https://cdn.spinnaker-js.com/rc/ https://acdn.adnxs.com/dmp/up/pixie.js siteimproveanalytics.com https://www.googletagmanager.com https://in.taskanalytics.com https://connect.facebook.net https://googleads.g.doubleclick.net www.googleadservices.com https://secure.adnxs.com http://ib.adnxs.com https://*.mookie1.com *.google-analytics.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://app.eika.no/infrastruktur-styleguide-web/ https://tagmanager.google.com;img-src 'self' * data: region1.google-analytics.com region1.analytics.google.com;frame-src 'self' *.youtube.com *.youtube-nocookie.com *.v
strict-transport-security
max-age=31536000

Links to (3)

Linked from (1)