orbitfestival.nl
orbitfestival.nl
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- jQuery
- 3.6.0
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Cookiebot
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (7)
- cdnjs.cloudflare.com×2
- kit.fontawesome.com×2
- sibforms.com×2
- consent.cookiebot.com×1
- www.googletagmanager.com×1
- www.youtube.com×1
- youtube.com×1
Social
DNS records live
- NS
-
- docks12.rzone.de
- shades05.rzone.de
- MX
-
- 5 smtp.rzone.de
- Verified for
-
- Brevo
Email authentication strong
- SPF
-
v=spf1 a mx ip4:62.148.172.176 ip6:2001:16e8:1112:6:62:148:172:169 include:spf.spamx.denit.net ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; rua=mailto:rua@dmarc.brevo.compolicy: quarantine - DKIM
-
- mail:
v=DKIM1; k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+ls…
selectors probed - mail:
Certificate (current)
WE1
Expires in 30 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(self)- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self'; frame-src orbitfestival.nl *.orbitfestival.nl *.facebook.com facebook.com *.google.com google.com *.cookiebot.com cookiebot.com *.hotjar.com hotjar.com *.youtube.com youtube.com *.vimeo.com vimeo.com *.googletagmanager.com googletagmanager.com *.stuurlui.dev stuurlui.dev shop.eventix.io *.shop.eventix.io *.eventix.io eventix.io *.weeztix.com weeztix.com open.spotify.com *.open.spotify.com- strict-transport-security
max-age=63072000; includeSubDomains; preload