jbf.no — domain check, WHOIS, DNS & reputation

HTML metadata

Title: JBF Bank og Forsikring
Description: Bank og forsikring for jernbane, transport og samferdselsnorge. JBF er et kundeeid finansselskap som ble startet av og for jernbaneansatte. Fortsatt er vi til for ansatte innen jernbane, transport og logistikk, men flere bedrifter har kommet til.
Language: nb-NO
Canonical: https://www.jbf.no/

Open Graph

url: https://www.jbf.no/
title: JBF Bank og Forsikring
locale: nb-NO
description: Bank og forsikring for jernbane, transport og samferdselsnorge. JBF er et kundeeid finansselskap som ble startet av og for jernbaneansatte. Fortsatt er vi til for ansatte innen jernbane, transport og logistikk, men flere bedrifter har kommet til.

Technology

Server: volt-adc
Stack: ASP.NET

Analytics

Google Tag Manager

Third-party hosts loaded (2)

app.eika.no×1
www.googletagmanager.com×1

Social

Contact

Phone

21622600

Registration

Registrar

GROUP.ONE NORWAY AS

Created

2000-05-22

Updated

2026-05-22

Name servers

ns1-04.azure-dns.com
ns2-04.azure-dns.net
ns3-04.azure-dns.org
ns4-04.azure-dns.info

DNS records live

NS

ns1-04.azure-dns.com
ns2-04.azure-dns.net
ns3-04.azure-dns.org
ns4-04.azure-dns.info

MX

0 mxa-00727601.gslb.pphosted.com
0 mxb-00727601.gslb.pphosted.com

TXT

Show 6 TXT records

o8jK9KHqEIL7tjsYfJmVo3FRxx0ysrfoPDqFiCjGE2fQ8wPbPaMJIJsswOlC8paN
656c43ac25d321de9376809cc43025cd81de95d9f0d935129456a0e5f4d76ce8
DomainVerification=5QY95R3X01UUE7L17JT8F7HIS67AG8IIT9LU7886WSVRWYTVPKJNCH662I2I5XWF
a234db4be4b928a9b3c544faa9c8eb2da5d825cb7d959c1b0bcab7f74a8d5307
4f0e23b496f9d71b0c7bf46c3a3e2ebd74db9f7f2995943f2d000405cae87dc8
eae7b73ab01d7c6042ba6e305b70dcd03fc5a2187e0fbeb1ed685ff69bf8ec19

Verified for

Atlassian
Dynamics 365
GlobalSign
Microsoft 365

Email authentication strong

SPF: v=spf1 include:_spf1.jbf.no include:_spf.sndr.no include:spf.securitycenter.no include:spf-00727601.pphosted.com include:spf.protection.outlook.com ip4:139.116.71.0/24 ~all
softfail (~all)
DMARC: v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

Buypass Class 3 CA 2

from 2025-10-13 to 2026-06-29

Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.jbf.no/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SameOrigin
x-content-type-options: nosniff
content-security-policy: default-src 'self';script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google.com https://*.gstatic.com *.googleapis.com https://app.eika.no/infrastruktur-styleguide-web/ https://www.youtube.com/iframe_api https://www.youtube.com/s/player/ https://eika.piwik.pro/ppms.js https://svc.kundedialog.eika.no/t/w https://mktdplp102cdn.azureedge.net/public/latest/js/form-loader.js https://cdn.spinnaker-js.com/rc/ https://acdn.adnxs.com/dmp/up/pixie.js siteimproveanalytics.com https://www.googletagmanager.com https://in.taskanalytics.com https://connect.facebook.net https://googleads.g.doubleclick.net www.googleadservices.com https://secure.adnxs.com http://ib.adnxs.com https://*.mookie1.com *.google-analytics.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://app.eika.no/infrastruktur-styleguide-web/ https://tagmanager.google.com;img-src 'self' * data: region1.google-analytics.com region1.analytics.google.com;frame-src 'self' *.youtube.com *.youtube-nocookie.com *.v
strict-transport-security: max-age=31536000

Links to (4)

Linked from (2)

eika.no×1
kvinnerifinans.com×1