leudal.nl — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Home | Gemeente Leudal
Language: nl
Generator: SIMsite powered by Drupal
Canonical: https://www.leudal.nl/

Open Graph

url: https://www.leudal.nl/
title: Home
locale: nl
site name: Gemeente Leudal
updated time: 2026-05-26T09:04:14+02:00

Technology

CMS: Drupal
JS framework: Next.js

Third-party hosts loaded (3)

cuatro.sim-cdn.nl×66
fonts.bunny.net×1
leudal.logging.simanalytics.nl×1

Social

Contact

Phone

(0475) 85 90 00

DNS records live

NS

nsauth1.bit.nl
nsauth2.bit.nl
nsauth3.bit.org

MX

0 leudal-nl.p-v1.mx.microsoft

TXT

Show 4 TXT records

d1cb697db02c8807fec978491acaf1f5b4de89933eaac0a6ae40a80d73e2cbea
0e20c9de08289c26de794f03e14fadebad5e94a525c29ee7ab97b170c4786612
BIT Internet Technologie, Ede NL
MS=C105B693B36D6707587009A9D0E071815DCAA97C

Verified for

Apple
Google
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:92.42.235.126 ip4:212.178.125.242 ip4:92.42.235.1 ip4:195.28.22.97 ip4:85.10.133.97 ip6:2a07:b440:163:1::59 include:spf.flowmailer.net include:spf.simgroephosting.nl include:spf.protection.outlook.com include:spf.eprov.nl include:spf.pinkprivate.cloud include:spf.topdesk.net include:spf.digitaalnachtregister.com include:_spf.mailrelay.zorgring.nl include:_spf.mailrelay.jeugdzorgnet.nl include:amazonses.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarcadmin@leudal.nl,mailto:rapportages@dmarc.ibdgemeenten.nl; ruf=mailto:dmarcadmin@leudal.nl

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lEFsccQ3cuacVvdjzH/6b+3KpQG6F3TLbv3o5X2YM8cvOcMsgarmo+smMumnNd1GcLPY4laLbAfjh…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bhux0xlxq6TIGE9YztY8W5hd/+i/igJ87V+QtJMqUjY1QNNpAoyV2n4Hf8xzXUr1dt01ekEvKSWH6…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

Thawte TLS RSA CA G1

from 2025-11-21 to 2026-11-21

Expires in 173 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.leudal.nl/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: same-origin
x-content-type-options: nosniff
content-security-policy: default-src 'self'; img-src * data: 'unsafe-inline' blob:; style-src * 'unsafe-inline' blob:; font-src * data:; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src *; form-action *; media-src *.readspeaker.com *.streamlock.net *.archieven.nl storage.googleapis.com scribit-pro-hosting.storage.googleapis.com scribit-pro.storage.googleapis.com app.talkjs.com *.bbvms.com *.cloudfront.net data: 'self' blob:; frame-src *; frame-ancestors 'self' https://*.polly.help; worker-src * 'unsafe-inline' blob:;
strict-transport-security: max-age=31536000
content-security-policy-report-only: default-src 'self'; img-src * data: blob:; style-src * 'unsafe-inline' blob: https://fonts.bunny.net; font-src 'self' data: https://fonts.bunny.net https://fonts.gstatic.com https://cuatro.sim-cdn.nl https://cuatro.sim-cdn-acceptatie.nl https://cuatro.sim-cdn-test.nl; script-src 'nonce-NWRkM2FiMjMtYWQ2ZC00NDk0LWE5ZWItYWRkNTBmYTE0YmIx' 'strict-dynamic' 'report-sample'; connect-src *; form-action 'self'; media-src https://*.readspeaker.com https://*.streamlock.net https://storage.googleapis.com https://scribit-pro-hosting.storage.googleapis.com https://scribit-pro.storage.googleapis.com https://app.talkjs.com 'self' blob:; frame-src *; frame-ancestors 'self' https://*.polly.help; worker-src * 'unsafe-inline' blob:; report-uri /api/csp-report

Links to (10)

Linked from (1)

ecicultuurfabriek.nl×1