merapi.nl
HTML metadata
Technology
- Server
- nginx
- jQuery
- 1.11.0 known XSS (<3.5)
- Stack
- PHP
- Ads
-
- Google Ads
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (4)
- ajax.googleapis.com×3
- www.googleadservices.com×2
- secure.skypeassets.com×1
- www.youtube.com×1
Social
Registration
- Registrar
- One.com A/S
- Created
- 1998-12-14
- Updated
- 2020-10-28
- Name servers
-
- ns01.one.com
- ns02.one.com
DNS records live
- NS
-
- ns01.one.com
- ns02.one.com
- MX
-
- 10 mx1.pub.mailpod6-cph3.one.com
- 10 mx2.pub.mailpod6-cph3.one.com
- 10 mx3.pub.mailpod6-cph3.one.com
- Verified for
-
Email authentication partial
- SPF
-
v=spf1 include:_custspf.one.com ip4:136.144.237.238 ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;policy: none (monitoring only) - DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pMc80a2PXzGE7eocxPPfX0URwUZG3JhigdkC0tfRASi2HfzgoPU0sXQEkBhlW3VhMzygDyCb0f7zyTUo0… - s2:
k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDlH81wYW+PZmHGOWCU3kMLSEmm25jJKzzt3uHtNUILJiMicT92NSSthgN3cGNOGz1y/F/y3Ml8TBfJzu9efBSrMQ…
selectors probed - s1:
Certificate (current)
GlobalSign GCC R3 DV TLS CA 2020
Expires in 26 days
HTTP security headers
- present
-
- strict-transport-security
- findings
-
- missing Content Security Policy
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- strict-transport-security
max-age=31536000;
Links to (9)
- youtube.com×1
- vvkr.nl×1
- trekinindonesie.nl×1
- sgrz.nl×1
- sgr.nl×1
- facebook.com×1
- calamiteitenfonds.nl×1
- anvr.nl×1
- 1tis.nl×1