nordlei.org
nordlei.org
HTML metadata
Technology
- Server
- Apache
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- cdn.jsdelivr.net×1
- www.googletagmanager.com×1
Contact
Registration
- Registrar
- Ascio Technologies, Inc. Danmark - Filial af Ascio technologies, Inc. USA
- Created
- 2013-08-08
- Expires
- 2026-08-08 66 days left
- Updated
- 2025-07-22
- Name servers
-
- ns-1176.awsdns-19.org
- ns-116.awsdns-14.com
- ns-1812.awsdns-34.co.uk
- ns-565.awsdns-06.net
DNS records live
- NS
-
- ns-116.awsdns-14.com
- ns-1176.awsdns-19.org
- ns-1812.awsdns-34.co.uk
- ns-565.awsdns-06.net
- MX
-
- 10 mgw.bahnhof.net
- TXT
-
upsales-customer-domain-verification=80df74f7ac4a54e6e2190bdee32ab203
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 include:146886775.spf04.hubspotemail.net redirect=nordlei.org.hosted.spf-report.commissing all - DMARC
-
v=DMARC1; p=none; rua=mailto:9f767a17@mxtoolbox.dmarc-report.com; ruf=mailto:9f767a17@forensics.dmarc-report.compolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZVn6GPrnp8Gm2R3b9yVTDAQQPm+YLLx8hCIOrBkCqrs5T+q4OyhnooUdy9aZmIZK67XmWLHHiKgyHT/zz3D… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvksR25V37zDZS4nnLd3zuCraFt+IGiWByBlqqryTd/SwpHz9rkCtr6C1IDf0puvApe37K1ua9TJ3dD…
selectors probed - selector1:
Certificate (current)
Amazon RSA 2048 M01
Expires in 150 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(),autoplay=(),camera=(),display-capture=(),encrypted-media=(),fullscreen=(),gamepad=(),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),publickey-credentials-get=(),sync-xhr=(self),usb=(),screen-wake-lock=(),web-share=(),xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
script-src 'nonce-8207a0aafe6b1cdd356ee433a7f2f916f8ff7121' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' 'report-sample' https: http:; frame-src 'self' *.dibspayment.eu https://td.doubleclick.net https://www.googletagmanager.com https://www.google.com https://js.stripe.com; object-src 'none'; base-uri 'self'; report-uri /be.api.csp-report- strict-transport-security
max-age=31536000; includeSubDomains- content-security-policy-report-only
default-src 'self'; script-src 'nonce-8207a0aafe6b1cdd356ee433a7f2f916f8ff7121' 'strict-dynamic' 'unsafe-eval' 'report-sample' 'unsafe-inline' https:; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://*.dibspayment.eu; style-src-elem 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://*.dibspayment.eu; img-src 'self' data: blob: https:; font-src 'self' data: https://cdn.jsdelivr.net https://fonts.gstatic.com https://*.zdassets.com; media-src 'self' https://*.zdassets.com; connect-src 'self' https: wss://*.zendesk.com wss://*.smooch.io; frame-src 'self' *.dibspayment.eu https://td.doubleclick.net https://www.googletagmanager.com https://www.google.com https://js.stripe.com; object-src 'none'; base-uri 'self'; report-uri /be.api.csp-report
Links to (17)
- vlei.se×1
- vlei.no×1
- vlei.it×1
- vlei.fr×1
- vlei.fi×1
- vlei.es×1
- vlei.dk×1
- vlei.com×1
- vlei.ch×1
- vlei.at×1
- nordlei.se×1
- nordlei.no×1
- nordlei.fi×1
- nordlei.dk×1
- leiroc.org×1
- globallei.co.uk×1
- gleif.org×1