rijnhartwonen.nl
HTML metadata
Technology
- CMS
- Next.js
- JS framework
- Next.js
Social
DNS records live
- NS
-
- ns1-01.azure-dns.com
- ns2-01.azure-dns.net
- ns3-01.azure-dns.org
- ns4-01.azure-dns.info
- MX
-
- 0 rijnhartwonen-nl.m-v1.mx.microsoft
- TXT
-
Show 4 TXT records
msfpkey=38dzgw3ikphvr7hh1nwo3clvqXr6fQyYBw0MFU2F8VzaYIMYaYQuW8jAPZb7rvj8I0fIbxiG59JRmeODXSZEk7q/YSdXC8APbkes=ZHkZ1RpViZ9tkxqA3+QfOiTnkIAh/K3A2a+Fy1hpBEnjSpeNo7eHmZVGa5vDYsK/bIFsbNXaxI9UbCgzCOdP+A==
- Verified for
-
- Adobe
- Anthropic
- Dynamics 365
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:_spf.itris.net include:spf.email.postex.com include:spf.eprov.nl include:_spf.yoursite.io include:spf.inceptivize.com include:eur.pb-dynmktge.com -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; fo=1; rua=mailto:f7z2prj3@ag.eu.dmarcadvisor.com; ruf=mailto:f7z2prj3@fr.eu.dmarcadvisor.com;policy: reject (enforced) - DKIM
-
Show 5 DKIM selectors
- google:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhJNNSb23HzB8kZRnm03y9vOL7TEuOo/DGaAjI4gCzfccCu5lRPga/wj5KKRmeVxuHM+BQpXP/+3Lxd… - selector2:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3v7j6cYXaUIupHZhYgft3vQTKj3hUE7sGm/TL68GfRxpstx9KbS6dLb4hdvzUyZI/WbLYf+zXNvf59ncLFT… - k1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDBS96F0nzm6hFo8mRnB31d6B4hpODHZEioRG27Cy5W0PD8tw0JtltYdZ1Q1w+n6TcLZvtITaAnM1k70s9t/o… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzU2f4zmGrQzZrZxJ0Bzbv+cQGviPiRCo1FeR2lXA6B9OA7KuxWXnKs+DK7wZmL7O1apqVYFydCtWs/1pg0… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9lpECLUF6yz67VR0Kjl3CX+91lpqtHLfXuU/n8hGUzA1DR+aR5Gtn4fjny1sEEUqXJKzJcHF/Nypqq5J1…
selectors probed - google:
Certificate (current)
GeoTrust TLS RSA CA G1
Expires in 75 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://media.iris.databalk.app https://scripts.clarity.ms https://www.clarity.ms https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com https://consent.cookiebot.com https://consentcdn.cookiebot.com/ https://oc-cdn-public-eur.azureedge.net/livechatwidget/ https://*.readspeaker.com https://*.postex.com https://*.email-provider.eu https://*.tolkie.nl https://*.piwik.pro https://*.expoints.nl https://*.bbvms.com https://cdn.bluebillywig.com https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://*.contentsquare.net 'unsafe-eval'; style-src 'self' 'unsafe-inline' https://oc-cdn-public-eur.azureedge.net https://*.readspeaker.com https://*.postex.com https://*.postex-dev.com https://*.tolkie.nl https://fonts.googleapis.com https://cdn.jsdelivr.net https://*.expoints.nl; style-src-attr 'self' 'unsafe-inline'; img-src 'self' blob: data: https://imgct.cook- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin-allow-popups- cross-origin-resource-policy
same-site