promise.se
promise.se
HTML metadata
Technology
- Server
- Apache
- CMS
- WordPress
Social
Contact
DNS records live
- NS
-
- ns1.loopia.se
- ns2.loopia.se
- MX
-
- 10 mailcluster.loopia.se
- 20 mail2.loopia.se
- Verified for
-
Email authentication weak
- SPF
-
v=spf1 ip4:85.24.156.0/22 include:kundspf.loopia.se include:all._spf.plma.se -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 144 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing frame protection
Header values
- referrer-policy
strict-origin-when-cross-origin- permissions-policy
geolocation=(self), microphone=(), camera=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' mailto: tel:; font-src https: data: blob:; img-src https: data: blob:; script-src https: 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval'; style-src https: 'unsafe-inline'; worker-src https: blob:; frame-ancestors 'self'; frame-src https: mailto: tel: blob:; connect-src https: blob:; media-src https: mediastream: blob:- strict-transport-security
max-age=31536000; includeSubDomains