safe.no
safe.no
HTML metadata
Technology
- Server
- Apache
- CMS
- WordPress 6.7.2
- PHP
- 8.2.31 security-only
- jQuery
- 3.6.0
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- policy.app.cookieinformation.com×2
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns01.coretrek.net
- ns02.coretrek.net
- ns03.coretrek.net
- MX
-
- 0 safe-no.mail.protection.outlook.com
- TXT
-
61285bae-7b76-45a0-82a2-c0b56d3cf3d0
- Verified for
-
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 include:_custspf.one.com include:spf.protection.outlook.com a:smtp.upheads.no ip4:193.19.65.85 ip4:193.19.65.83 include:_spf.sndr.no -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:231c92a02ac6693@rep.dmarcanalyzer.com; ruf=mailto:231c92a02ac6693@for.dmarcanalyzer.com; fo=1;policy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAF7QX6erzOlRPfPyuHjvotZv1aasvcDF1Gd3k6eOKxuBy7Bk/1nQ8SM5e77boWn80P7hrNPVkfUD+ymFWEt… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArld5HZNusYOud53EQO2b0f4+C9FBFlKTIxBLjKvNbDe8xD5ChahaecQzu8y6NQhOVBS3cc3eQoo/1w…
selectors probed - selector1:
Certificate (current)
YE1
Expires in 86 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src https: data: 'unsafe-inline' 'unsafe-eval'- strict-transport-security
max-age=31536000;