scheldeland.be

HTML metadata

Title

Home | Scheldeland, jouw vakantieland

Language

nl

Generator

Drupal 10 (https://www.drupal.org); Commerce 3

Canonical

https://www.scheldeland.be/

Translations

de
en
fr
nl

Open Graph

image:url: https://www.scheldeland.be/themes/custom/robin/assets/img/share-scheldeland.png

Technology

CMS: Drupal

Analytics

Google Tag Manager

Fonts

Adobe Fonts
Google Fonts

Third-party hosts loaded (10)

developers.google.com×2
maps.googleapis.com×2
pro.fontawesome.com×2
use.typekit.net×2
api.easygis.eu×1
fonts.googleapis.com×1
fonts.gstatic.com×1
kit.fontawesome.com×1
www.google.com×1
www.googletagmanager.com×1

Social

DNS records live

NS

master.ns.verschooten.be
ns.verschooten.be
ns3.verschooten.be

MX

30 mail.hmail.be

Verified for

Adobe
Google
Meta
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.flexmail.eu  include:servers.mcsv.net include:mail03.socratos.net ip4:194.32.153.52 ip4:87.233.11.35 ip4:87.233.11.36 ip4:87.233.11.37 ip4:87.233.11.50 ip4:193.190.147.34 ip4:193.190.147.35 ~all

softfail (~all)

DMARC

v=DMARC1;p=none;sp=reject;pct=100;rua=mailto:postmaster@scheldeland.be;ruf=mailto:postmaster@scheldeland.be;ri=86400;aspf=r;adkim=r;fo=s

policy: none (monitoring only) · sp=reject

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
mail: v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCmy2TqkuxplPSJQJ3Zgnj0ACyKAY49SeOpkKDH14osSIUeXJPuEsvb+aVZxb57UIUfuDlWh3w5JK8vjdbN67BtyCMcY…

selectors probed

Certificate (current)

R12

from 2026-05-06 to 2026-08-04

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.scheldeland.be/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://*.googleapis.com https://www.google-analytics.com *.googletagmanager.com tagmanager.google.com https://*.google.com https://cdnjs.cloudflare.com https://kit.fontawesome.com https://www.google.com https://www.gstatic.com https://code.highcharts.com https://*.googleadservices.com https://*.facebook.net https://cdn.popt.in https://googleads.g.doubleclick.net https://*.agconsult.com *.newrelic.com *.licdn.com *.leadinfo.net https://bam.nr-data.net https://chimpstatic.com *.mailchimp.com *.list-manage.com *.clarity.ms data: *.facebook.com https://www.instagram.com https://www.tiktok.com https://lf16-tiktok-web.ttwstatic.com *.easygis.eu https://*.cookiehub.eu https://*.cookiehub.net https://*.cookiehub.com https://*.uitdatabank.be https://*.jsdelivr.net; object-src 'self'; style-src 'self' 'unsafe-inline' *.fontawesome.com *.gstatic.com *.googleapis.com *.googletagmanager.com tagmanager.google.com *.cloudflare.com *
strict-transport-security: max-age=10000