kempenhaeghe.nl
kempenhaeghe.nl
HTML metadata
Technology
- CMS
- Gatsby
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (5)
- fonts.googleapis.com×2
- cdn-eu.readspeaker.com×1
- fonts.gstatic.com×1
- kit.fontawesome.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
Registration
- Registrar
- team.blue nl B.V.
- Created
- 1998-06-09
- Updated
- 2023-07-06
- Name servers
-
- ns2.dn-s.nl
- ns1.dn-s.nl
- ns3.dn-s.nl
- ns4.dn-s.nl
DNS records live
- NS
-
- ns1.dn-s.nl
- ns2.dn-s.nl
- ns3.dn-s.nl
- ns4.dn-s.nl
- MX
-
- 5 kempenhaeghe-nl.q-v1.mx.microsoft
- TXT
-
IFt2SkvCngxzW8Q5E2XldufiPSmaOeaV4CQy8w4vgnIg45PwIno7kgi+UI4Nuz3hJ4RHlZqBfrH5Vpq/ZAizmA==
- Verified for
-
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:_spf.premiumantispam.nl include:spf.afas.online include:spf.topdesk.net include:_spf.zorgmail.nl include:procurios.cloud include:spf.mailjet.com ip4:92.66.28.1/24 ip4:31.149.187.1/24 ip4:84.241.177.148 ip4:91.184.0.100 ip4:31.7.3.206 ip6:2a03:9700:8000::5d ip6:2001:1690:22:200::28 ip6:2a02:2268:ffff:ffff::4 -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:bgpzgcv0fj@rua.powerdmarc.com; ruf=mailto:bgpzgcv0fj@ruf.powerdmarc.com; fo=1;policy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3l52ksxrk/eyoxoQlD+OovgyqD1HXgCT+NHVKX0NNwoXMVHpsPZRcHEhlrwwDZGYwsF77G8PAHLUKE… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHsLt4GFXypeZUKtquwoQf2SXy98qCfXFssLOB5+gcQn4nREgUVtJo1XBiUSe/GlBQ2Xv5s38EvRUA…
selectors probed - selector1:
Certificate (current)
Sectigo Public Server Authentication CA EV R36
Expires in 227 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), ambient-light-sensor=(), autoplay=(self), battery=(), camera=(), clipboard-read=(), clipboard-write=(self), display-capture=(), document-domain=(), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self), publickey-credentials-get=(self), screen-wake-lock=(), sync-xhr=(self), usb=(), web-share=(self), xr-spatial-tracking=(), interest-cohort=()- x-content-type-options
nosniff- content-security-policy
default-src 'none'; base-uri 'self'; object-src 'none'; frame-ancestors 'self' *.recaptcha.net; form-action 'self' *.readspeaker.com; script-src 'self' 'unsafe-inline' fonts.bunny.net https://bekkeringmedia47583.activehosted.com *.craftcms.com *.stripe.com *.fontawesome.com *.google.com *.gstatic.com *.recaptcha.net *.readspeaker.com cdn.jsdelivr.net tagmanager.google.com www.googletagmanager.com *.googleapis.com *.google-analytics.com; frame-src 'self' https://bekkeringmedia47583.activehosted.com *.stripe.com *.youtube.com *.youtube-nocookie.com *.vimeo.com *.google.com *.gstatic.com *.recaptcha.net *.readspeaker.com www.googletagmanager.com; style-src 'self' 'unsafe-inline' fonts.bunny.net https://bekkeringmedia47583.activehosted.com *.fontawesome.com fonts.googleapis.com *.readspeaker.com cdn.jsdelivr.net tagmanager.google.com; font-src 'self' data: fonts.bunny.net *.fontawesome.com *.gstatic.com *.readspeaker.com cdn.jsdelivr.net; connect-src 'self' *.craftcms.com *.fontawesome.com- strict-transport-security
max-age=31536000; includeSubDomains; preload