indexo.dev

hetbakkertje.nl

.nl crawl

First seen 2026-05-19 · Last seen 2026-05-30 · ok HTTP/1.1 200 840 ms crawled 2026-05-30

NL · 145.131.40.47 · AS48635 Your Hosting B.V.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
’t Bakkertje | Bakkerij, banketbakker & broodjeszaak | Den Haag
Description
In onze bakkerij, banketbakkerij en broodjeszaak in Den Haag, bakken wij met veel enthousiasme iedere dag weer heerlijk vers brood en banket.
Language
nl
Generator
nopCommerce

Technology

Server
Microsoft-IIS
jQuery
3.4.1 known XSS (<3.5)
Analytics
  • Google Tag Manager
Ads
  • Meta Pixel

Third-party hosts loaded (2)

  • www.googletagmanager.com×3
  • connect.facebook.net×1

Social

Contact

Phone

DNS records live

NS
  • ns1.argewebhosting.eu
  • ns2.argewebhosting.com
  • ns3.argewebhosting.nl
MX
  • 10 mx1.cloudorb.com
  • 20 mx2.cloudorb.com

Email authentication weak

SPF
v=spf1 include:cloudorb.com +mx +ip4:35.214.137.6 +ip4:149.72.121.119 ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-12 to 2026-08-10
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://hetbakkertje.nl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
strict-transport-security
max-age=31536000; includeSubDomains

Links to (6)

Linked from (1)