harderwijk.nl

HTML metadata

Title: Home | Gemeente Harderwijk
Description: Officiële website van de gemeente Harderwijk met informatie over onze (digitale) diensten, bestuur en de organisatie.
Language: nl
Generator: TYPO3 CMS
Canonical: https://www.harderwijk.nl/

Open Graph

title: Home
site name: Gemeente Harderwijk
description: Officiële website van de gemeente Harderwijk met informatie over onze (digitale) diensten, bestuur en de organisatie.

Technology

Server: nginx

Third-party hosts loaded (3)

websurveys2.servmetric.com×5
cdn-eu.readspeaker.com×1
hitcounter.govmetric.com×1

Social

Contact

Email

info@harderwijk.nl

Phone

0341411911

Address

Havendam 563841 AA Harderwijk

Registration

Registrar

Previder B.V.

Created

1997-07-24

Updated

2016-10-05

Name servers

nsauth3.introweb.net
nsauth2.introweb.nl
nsauth1.introweb.nl

DNS records live

NS

nsauth1.introweb.nl
nsauth2.introweb.nl
nsauth3.introweb.net

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Google

Email authentication strong

SPF

v=spf1 include:_spf.google.com include:_spf.zivver.com include:spf.eprov.nl include:_spf.services.centric.eu include:spf1.serasoft.com include:spf2.serasoft.com ip6:2a01:4d60:3:1:6:0:0:1 -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:q5b0bycz@ag.eu.dmarcadvisor.com,mailto:rapportages@dmarc.ibdgemeenten.nl; ruf=mailto:q5b0bycz@fr.eu.dmarcadvisor.com

policy: reject (enforced)

DKIM

google: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCZMelQtHM9Maey3Rfx9hlkhfU6BGzYN0b0TcLBOeGQO6sh37dcWyA/mFn3MZtuyx2U3HzHOsFUcejX4Lu+gM…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA EV R36

from 2025-09-23 to 2026-10-12

Expires in 133 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://www.harderwijk.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), ambient-light-sensor=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=*, geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=*, payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), web-share=(), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' https://hitcounter.govmetric.com https://hitcounter.servmetric.com https://websurveys2.servmetric.com https://websurveys.govmetric.com https://websurveys2.govmetric.com https://wsstatic.govmetric.com https://wsstatic.servmetric.com https://youtu.be https://youtube.com https://www.youtube.com https://player.vimeo.com/api/player.js https://cdn-eu.readspeaker.com https://vtdnntts-eu.readspeaker.com https://siteimproveanalytics.com 'report-sample'; img-src 'self' data: https://websurveys2.servmetric.com https://websurveys2.govmetric.com https://wsstatic.govmetric.com https://wsstatic.servmetric.com https://youtube.com https://www.youtube.com https://youtu.be https://i.ytimg.com https://i.vimeocdn.com https://cdn-eu.readspeaker.com https://*.global.siteimproveanalytics.io https://siteimproveanalytics.com https://eu2.siteimprove.com https://szsurvey.siteimprove.com https://ssl.siteimprove.com; base-uri 'self'; frame-src 'self' https://websurveys2.servmet
strict-transport-security: max-age=31536000