repvelo.be
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (3)
- fonts.googleapis.com×1
- maps.googleapis.com×1
- www.googletagmanager.com×1
DNS records live
- NS
-
- ns-1106.awsdns-10.org
- ns-1542.awsdns-00.co.uk
- ns-24.awsdns-03.com
- ns-967.awsdns-56.net
- MX
-
- 10 repvelo-be.mail.protection.outlook.com
Email authentication strong
- SPF
-
v=spf1 include:spf.cyclesoftware.nl include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400policy: quarantine · sp=quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpyLZIreQYyUr2TeaYH2CGnzZaNS7t4Tnl3VMXDeI/H2CeA/JZz/MSbPbkhGI6dW9SKVxKO1+qgzl0…
selectors probed - selector1:
Certificate (current)
R12
Expires in 69 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- permissions-policy
fullscreen=(self), sync-xhr=(self), clipboard-read=(self), clipboard-write=(self), execution-while-not-rendered=(self), execution-while-out-of-viewport=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self' data: repvelo.be *.repvelo.be wchat.freshchat.com *.webpush.freshchat.com * 'unsafe-hashes' 'unsafe-inline' 'unsafe-eval'; report-uri https://s01.cyclesoftware.nl/app/cs/csp-report/- strict-transport-security
max-age=31536000; includeSubDomains