hsb.se
hsb.se
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- Gatsby
- Stack
- ASP.NET
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (3)
- cdn.jsdelivr.net×1
- consent.cookiebot.com×1
- dl.episerver.net×1
Social
DNS records live
- NS
-
- ns1-04.azure-dns.com
- ns2-04.azure-dns.net
- ns3-04.azure-dns.org
- ns4-04.azure-dns.info
- MX
-
- 10 hsb-se.mail.protection.outlook.com
- TXT
-
Show 12 TXT records
DomainVerification=AXIJT53Q42Q6FB0V1A11VYXF53TJWOENUZ4C21RFK873LCNYJKZV5VL5OO22VS4Z"lime-domain-verification=37A8129BA167630lime-domain-verification=7DB2D8F5C2F309A4qg9cilbdpuglv51ffenmefb92_xfb7t8oxl1i868aze8og6gbx9i1dg6tjiido4iard4tnhtqch25hg3ehskxKS4JP+LOFeUljet4w3pgLxERMMMLl09Xvblss1J6x1P2Ik7PX9Mc+egPm+mNzSwIWsaqGnHARpvQgZW7uu7A==bw=hK0spkOSnSeymSivuhigm5Cv0PEmvfAOvf0xaTLUMESjsO5wl9fnQXb2I5ff05fO5JiwQDPDbN3OdDEa8SULf6Y6mW6zT4WBN+4HqebfrviFXlph4Bh+fffDFQZedTbwwQ==4mg8t3d3c64m500r445j358kbgmxvp24bvybtslhg1dsdpvomqe9j0f17qhywbfny45dw447jsrd17yfh90dk53cqmhwtx
- Verified for
-
- Atlassian
- Microsoft 365
- TeamViewer
Email authentication strong
- SPF
-
v=spf1 include:_spf.hsb.se include:spf.protection.outlook.com include:_spf.anpdm.com include:mailgun.org include:mail.webropolsurveys.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:senmzx0z@ag.eu.dmarcadvisor.com;policy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCx/0HovbHXYFpySMCSwICqrf0zWRCSCzO6erSMlPZMTp0x8oepgAFI0bfSVbXenHFCPKNUIzpzthC3auH2Lb… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IfmkxIYD1NyENBMSMZ50aXvz9QlcqLME2aN3SrnhgrCcvdkOAlmLrL8K1w70Vnm6bJ+SndlZZmmanz3nv… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Sebl1J6VotKuC2sRyQNlBT4pDm65Gt4RjsDRhJodnwwWH63TsnyBevqPx1MmbBcq+6AD1LUYDKCKHv73F…
selectors probed - selector1:
Certificate (current)
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 58 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy-report-only
- x-content-type-options
- findings
-
- missing Content Security Policy
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- strict-transport-security
max-age=31536000; includeSubDomains- content-security-policy-report-only
default-src 'self' https: wss:; img-src * data: blob:; media-src * data:; style-src 'self' 'unsafe-inline' https://hsbgot.humany.net https://wds.ace.teliacompany.com https://fonts.googleapis.com https://www.gstatic.com ; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://mata.hsb.se https://tracker.hsb.open-analytics.se https://*.hotjar.com https://www.googletagmanager.com https://googleads.g.doubleclick.net https://maps.googleapis.com https://*.imbox.io https://js.monitor.azure.com https://*.cookiebot.com https://cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js https://dl.episerver.net wss://*.hotjar.com https://userlike-cdn-widgets.s3-eu-west-1.amazonaws.com https://userlike-cdn-umm.b-cdn.net https://connect.facebook.net https://fonts.googleapis.com https://www.google.com https://www.gstatic.com https://wds.ace.teliacompany.com https://*.superoffice.com https://www.youtube.com ; frame-src 'self' https: ; report-uri /api/ContentSecurityPolicy/ReportViolation