mastodonsweden.se
mastodonsweden.se
HTML metadata
Technology
- Server
- Mastodon
Third-party hosts loaded (1)
- cdn.masto.host×1
DNS records live
- NS
-
- ns1.loopia.se
- ns2.loopia.se
- MX
-
- 10 mailcluster.loopia.se
- 20 mail2.loopia.se
Email authentication weak
- SPF
-
v=spf1 include:spf.loopia.se -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
E8
Expires in 58 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
base-uri 'none'; default-src 'none'; frame-ancestors 'none'; font-src 'self' https://mastodonsweden.se; img-src 'self' data: blob: https://mastodonsweden.se https://cdn.masto.host; media-src 'self' data: https://mastodonsweden.se https://cdn.masto.host; manifest-src 'self' https://mastodonsweden.se; form-action 'none'; child-src 'self' blob: https://mastodonsweden.se; worker-src 'self' blob: https://mastodonsweden.se; connect-src 'self' data: blob: https://mastodonsweden.se https://cdn.masto.host wss://mastodonsweden.se; script-src 'self' https://mastodonsweden.se 'wasm-unsafe-eval'; frame-src 'self' https:; style-src 'self' https://mastodonsweden.se 'nonce-joB4A98SL4aKJmQrDOqswQ=='- strict-transport-security
max-age=63072000; includeSubDomains, max-age=31536000