nikkaluoktaexpressen.se

.se crawl

First seen 2026-06-04 · Last seen 2026-06-04 · ok HTTP/1.1 200 164 ms crawled 2026-06-04

SE · 46.21.102.111 · AS42708 Glesys AB

Reputation 100/100

Classifying

HTML metadata

Title: Nikkaluoktaexpressen
Language: en

Technology

Server: nginx

Third-party hosts loaded (4)

static.saveacdn.se×10
public.saveacdn.se×6
savea.objects.dc-fbg1.glesys.net×4
js-de.sentry-cdn.com×1

Social

Contact

Phone

+4698081311

DNS records live

NS

ns1.loopia.se
ns2.loopia.se

Email authentication no MX

SPF: v=spf1 include:spf.savea.se include:spf.ahasend.com -all
strict (-all)
DMARC: v=DMARC1; p=quarantine; sp=none; adkim=r; aspf=r;
policy: quarantine · sp=none
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-04-15 to 2026-07-14

Expires in 39 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://nikkaluoktaexpressen.se/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; img-src * data:; media-src *; frame-src *; style-src * 'unsafe-inline'; font-src *; script-src https://static.saveacdn.se/ https://savea.objects.dc-fbg1.glesys.net/ 'unsafe-inline' https://browser.sentry-cdn.com https://js-de.sentry-cdn.com https://maps.googleapis.com/ https://*.facebook.net/ https://facebook.net/ https://*.facebook.com/ https://facebook.com/; connect-src 'self' *.sentry.io https://maps.googleapis.com/

Links to (8)

Linked from (1)

savea.se×1