sandaya.es

.es crawl

First seen 2026-04-15 · Last seen 2026-05-10 · ok HTTP/1.1 200 2331 ms crawled 2026-05-10

FR · 213.251.167.103 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Mejores Campings 4 y 5 estrellas | Sandaya

Description

Descubre nuestros campings de 4 y 5 estrellas en Francia, España, Italia y Bélgica: vacaciones premium en plena naturaleza con Sandaya.

Language

Canonical

https://www.sandaya.es/

Translations

Open Graph

url: https://www.sandaya.es
title: Mejores Campings 4 y 5 estrellas | Sandaya
description: Descubre nuestros campings de 4 y 5 estrellas en Francia, España, Italia y Bélgica: vacaciones premium en plena naturaleza con Sandaya.

Technology

Server: nginx

Analytics

Google Analytics

Third-party hosts loaded (7)

img.sandayagroupe.eu×3
www.sandaya.co.uk×2
www.google-analytics.com×1
www.sandaya.de×1
www.sandaya.fr×1
www.sandaya.it×1
www.sandaya.nl×1

Contact

Phone

+34 912 15 89 31

DNS records live

NS

dns104.ovh.net
ns104.ovh.net

MX

1 aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Verified for

Atlassian
Google

Email authentication partial

SPF

v=spf1 a:smtpout.webcamp.fr ip4:74.125.82.174 ip4:52.212.5.21 ip4:52.208.17.29 ip4:185.200.164.8 ip4:185.21.152.151 include:namebay.email include:_spf.google.com include:spf.maxxton.com include:spf.mailjet.com ~all

softfail (~all)

DMARC

v=DMARC1;p=none;sp=none;adkim=r;aspf=r;rua=mailto:notifications.dsi@sandaya.fr;ruf=mailto:notifications.dsi@sandaya.fr;ri=604800;fo=1

policy: none (monitoring only) · sp=none

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApj1HDpKQ+QZeprILZ0CLQ/Pk6qGBDOyBVBfKcCAc8YwclPl7/P5Ver7n64giLiutrLAH4I8adTNovC…

selectors probed

Certificate (current)

GlobalSign RSA OV SSL CA 2018

from 2025-06-30 to 2026-08-01

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.sandaya.es/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: sameorigin
x-content-type-options: nosniff
content-security-policy: default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; worker-src blob:; object-src 'self' data: https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https:; media-src 'self' https:; frame-src 'self' https:; font-src 'self' https:; connect-src 'self' https: wss:; frame-ancestors 'self'
strict-transport-security: max-age=63072000