odense-marcipan.no
HTML metadata
Technology
- Server
- illumi-web01
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (2)
- fonts.googleapis.com×2
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- a.portsdns.se
- b.portsdns.net
- MX
-
- 0 odensemarcipan-no01e.mail.protection.outlook.com
- Verified for
-
Email authentication weak
- SPF
- not published
- DMARC
-
v=DMARC1; p=none; rua=mailto:DMARCReports@odense-marcipan.no; aspf=spolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDpOOt0ORCQluVkSceZuEiYSuUgcHxyLrDRgmF9E69xdOvNJf+FvlOFGW8Q41yHB52/944hZuY+pKsicN9/Xm… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQCy1i/8P7JgWHmiPmPP7YKfv0RG1cllHrIRXyBgEjmgDc6VIYkN29GTJtA6eK0pmbFzGE3V2i8+t5…
selectors probed - selector1:
Certificate (current)
R12
Expires in 84 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- permissions-policy
accelerometer=(), autoplay=*, camera=(), encrypted-media=(), fullscreen=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), sync-xhr=(), usb=()- x-content-type-options
nosniff- content-security-policy
script-src 'strict-dynamic' https: 'self' 'nonce-xKAv2JIlXJygGxZ1H73EFlr4hK9v/FOBqnfLqmSW+Rg='; object-src 'none'; form-action 'self' *.reepay.com; frame-ancestors https:- strict-transport-security
max-age=31104000; preload- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
same-origin