indexo.dev

lantero.se

.se crawl

First seen 2026-05-24 · Last seen 2026-05-30 · ok HTTP/1.1 200 4623 ms crawled 2026-05-29

SE · 46.246.110.220 · AS42708 Glesys AB

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Lantero – Support with Regulations, Reporting, and Case Management
Description
Lantero helps companies, authorities, and organizations simplify the work with regulations, reporting, processes, and case management.
Language
en
Canonical
https://www.lantero.se/en/
Translations
  • en
  • sv

Open Graph

url
https://www.lantero.se/en/
title
Lantero – Support with Regulations, Reporting, and Case Management
description
Lantero helps companies, authorities, and organizations simplify the work with regulations, reporting, processes, and case management.

Technology

Server
nginx
CMS
Next.js
JS framework
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • objects.dc-sto1.glesys.net×4
  • www.googletagmanager.com×1

Social

Contact

Email
Phone
Address
Drottninggatan 71C111 36 Stockholm

DNS records live

NS
  • ns1.loopia.se
  • ns2.loopia.se
MX
  • 1 lantero-se.mail.protection.outlook.com
TXT
  • detectify-verification=8f1335146ea94091025a118e0e60e37d
  • _3z0meisfsuxdsipod0kzlnjfa7sco5x
  • _uudfd9l1yzcth1i34ru5nvirsspnf7g
Verified for
  • Google
  • Microsoft 365

Email authentication weak

SPF
v=spf1 include:kundspf.loopia.se include:spf.protection.outlook.com include:one.zoho.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-04-10 to 2026-07-09
Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.lantero.se/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY
permissions-policy
camera=(), microphone=(), geolocation=(), payment=(), usb=(), serial=(), bluetooth=(), magnetometer=(), autoplay=(self "https://*.youtube.com" "https://youtu.be"), encrypted-media=(self "https://*.youtube.com" "https://youtu.be"), fullscreen=(self "https://*.youtube.com" "https://youtu.be"), picture-in-picture=(self "https://*.youtube.com" "https://youtu.be"), accelerometer=(self "https://*.youtube.com" "https://youtu.be"), gyroscope=(self "https://*.youtube.com" "https://youtu.be"), clipboard-write=(self "https://*.youtube.com" "https://youtu.be" "https://*.ytimg.com" "https://play.google.com"), display-capture=(self)
x-content-type-options
nosniff
content-security-policy
default-src 'self'; base-uri 'self'; form-action 'self'; script-src 'self' 'unsafe-inline' *.cookiebot.com *.cookiebot.eu *.usercentrics.eu *.hcaptcha.com hcaptcha.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.googleadservices.com *.g.doubleclick.net pagead2.googlesyndication.com *.google.com *.google.se *.google.de *.google.fr *.google.co.uk *.google.es *.google.it *.google.nl fonts.google.com apis.google.com translate.googleapis.com www.gstatic.com td.doubleclick.net *.youtube.com youtu.be *.ytimg.com play.google.com calendly.com *.calendly.com challenges.cloudflare.com; frame-src 'self' *.cookiebot.com *.cookiebot.eu *.usercentrics.eu *.hcaptcha.com hcaptcha.com *.googletagmanager.com *.google-analytics.com *.analytics.google.com *.googleadservices.com *.g.doubleclick.net pagead2.googlesyndication.com *.google.com *.google.se *.google.de *.google.fr *.google.co.uk *.google.es *.google.it *.google.nl fonts.google.com apis.google.com translate.googleapis.c
strict-transport-security
max-age=15724800; includeSubdomains

Links to (28)

Linked from (1)