lundagrossisten.se

HTML metadata

Technology

Server

Apache

CMS

Gatsby

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• www.facebook.com×1
• www.googletagmanager.com×1

Social

• youtube
• facebook
• instagram

DNS records live

NS

• ns1.loopia.se
• ns2.loopia.se

MX

• 10 spamtitan-nod2.primeq.se
• 20 spamtitan-nod1.primeq.se

TXT

• 7mfw5374n870w4fmbgw2vfq6y786p6fy
• _jxs1st7bazmfj2c0kh6jp0aa3ap7t7o
• _crje4y071u47wcvncj4w0aj0560x1k5

Verified for

• Google
• Microsoft 365

Email authentication partial

SPF

v=spf1 a mx a:new.lundagrossisten.se ip4:3.65.59.254 ip4:83.241.177.194 ip4:83.241.177.209 ip4:83.241.177.206 ip4:81.216.67.208 ip4:81.216.67.210 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:e56f0fd2@mxtoolbox.dmarc-report.com; ruf=mailto:e56f0fd2@forensics.dmarc-report.com; fo=1

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1TuWOdmIk/z6ChV1v+miwqPBQPMjslR8fLOxxlANy1sO0dbGQ+AgwNOhJBoITfDLuDDZVYAhfiVcnk…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://lundagrossisten.se/

present

• x-frame-options
• x-content-type-options
• cross-origin-opener-policy
• cross-origin-resource-policy

findings

• missing HSTS
• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• youtube.com×1
• instagram.com×1
• facebook.com×1

Linked from (1)

• kylavarme.se×1