ideal.nl

.nl crawl

First seen 2026-05-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 8487 ms crawled 2026-05-16

DE · 3.127.1.83 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title: iDEAL | Wero - Paying online through your own bank

Open Graph

url: https://ideal.nl/en/
title: iDEAL | Wero - Paying online through your own bank
locale: en
site name: iDEAL

Technology

Server: Apache
CMS: Nuxt

Third-party hosts loaded (1)

d1twnm33rljaon.cloudfront.net×6

DNS records live

NS

ns-1054.awsdns-03.org
ns-1544.awsdns-01.co.uk
ns-503.awsdns-62.com
ns-542.awsdns-03.net

MX

10 ideal-nl.mail.eo.outlook.com

TXT

Show 7 TXT records

google-site-verification=QpY5RN5ntqhWurxRr_4oFiJE2roT7wwjIYsSvfTT600
status-page-domain-verification=pb9n8r0scqkh
26r0ptrhmq1vsfz90b9bxtgl9j98f7qr
MS=ms83238057
amazonses:3ZLZduaNfgPz0CiGCuqcODtUS3NMZcGslYfVJu3f+as=
apple-domain-verification=bKzfIYltf8i7PbNl
b84ysgzbv76tz7qxgmty8wf8rb7y0ksl

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com ip4:194.165.34.0/24 ip4:199.255.192.0/22 ip4:199.127.232.0/22 ip4:54.240.0.0/18 ip4:69.169.224.0/20 ip4:76.223.176.0/20 ip4:76.223.128.0/19 include:_spf.argewebhosting.nl include:stspg-customer.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:postmaster@currence.nl; ruf=mailto:postmaster@currence.nl; fo=s; sp=reject; pct=100

policy: reject (enforced) · sp=reject

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1GxfjjyS9gao8agcT2OluF3Rxv9DkZiX6OXc9WC8d6SQNKBOiwCG0zaxMrEFqZtUS7ekTB/FeEc3CI…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6GfsNCgboxLEvSOBd6npVqDaaWZF8ueYpbH+Tc8cTa7xuArhD6CVVIiS2WazqpVEiSFxxTHZsLHYoO…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvjOLjGUvE82aNWvQUcBIyo592p2BkMCnlV0VWEZMne5fF9WiYfTKwNAYh3X2D/z4HuK/zbpQd1YRnCxgH…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ik2sLtniye+mDPKzmDxJMZd7wUd2qsDhtjtFAJX4NSJ6cwUZgyfgB5pYQNbxUbsnrUY3xlg80RUtPlccx…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA EV E36

from 2026-03-25 to 2026-10-10

Expires in 143 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://ideal.nl/en

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles

Header values

referrer-policy: same-origin, no-referrer
x-frame-options: sameorigin
permissions-policy: camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()
x-content-type-options: nosniff
content-security-policy: base-uri 'self'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' https: data:; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-d+imzWxlgL0q7gl/dF10FA=='; upgrade-insecure-requests;
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: same-origin
cross-origin-resource-policy: same-origin

Links to (1)

wero-wallet.eu×1