hewe.fr
HTML metadata
Technology
- Server
- Caddy
Third-party hosts loaded (1)
- dovendi.b-cdn.net×5
Contact
- Phone
Registration
- Registrar
- XNS Registrar B.V.
- Created
- 2025-05-03
- Expires
- 2027-05-03 348 days left
- Updated
- 2026-05-03
- Name servers
-
- ns1.dovendi.nl
- ns2.dovendi.eu
- ns3.dovendi.eu
DNS records live
- NS
-
- ns1.dovendi.nl
- ns2.dovendi.eu
- ns3.dovendi.eu
- MX
-
- 10 mx186.m2bp.com
- 10 mx186.mb1p.com
- TXT
-
c604ce15b99eb0dfb8d78cf6ae04008d34e61ed6dan-ownership-verification=2de7dbe2afternic-verification-8jDbcERHhqPtecPbFcqVib
Email authentication strong
- SPF
-
v=spf1 -allstrict (-all) - DMARC
-
v=DMARC1; p=rejectpolicy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
E8
Expires in 25 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self'; img-src 'self' https://dovendi.b-cdn.net data:; font-src 'self' https://fonts.gstatic.com; script-src 'self' https://dovendi.b-cdn.net https://www.feedbackcompany.com 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' https://dovendi.b-cdn.net https://www.feedbackcompany.com 'unsafe-inline'; style-src 'self' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline' https://dovendi.b-cdn.net https://fonts.googleapis.com; frame-src 'self' https://www.feedbackcompany.com; connect-src 'self' https://www.feedbackcompany.com;- strict-transport-security
max-age=63072000; includeSubDomains; preload