safetypassport.eu

.eu crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1453 ms crawled 2026-05-19

NL · 35.214.218.196 · AS43515 Google Ireland Limited

Reputation 89/100 weak security headers dmarc monitor-only

sector other type landing page

HTML metadata

Title

Home - Safety passport

Language

en-US

Generator

Divi v.4.27.6

Canonical

https://safetypassport.eu/

Feeds

Safety passport » Feed RSS
Safety passport » Comments Feed RSS

Open Graph

url: https://safetypassport.eu/
title: Home - Safety passport
locale: nl_NL
site name: Safety passport

Technology

Server: nginx
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (1)

fonts.googleapis.com×3

DNS records live

NS

ns1.siteground.net
ns2.siteground.net

MX

10 mx10.antispam.mailspamprotection.com
20 mx20.antispam.mailspamprotection.com
30 mx30.antispam.mailspamprotection.com

Email authentication partial

SPF

v=spf1 +a +mx include:safetypassport.eu.spf.auto.dnssmarthost.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; aspf=r; adkim=r;

policy: none (monitoring only)

DKIM

default: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCYPtQrPhSVlKAeg109TkUg0wDR+2SW0oAg9xwWtrNyj3c9wvM6QZAP6lbji3SLZ4S8La1zsGFxQkHYyK3lEqIvkzvNH…

selectors probed

Certificate (current)

R13

from 2026-05-05 to 2026-08-03

Expires in 75 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://safetypassport.eu/nl/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: script-src * 'self' 'unsafe-inline' 'unsafe-eval' wistia.com youtube.com blob: