indexo.dev

servi.no

.no crawl

First seen 2026-05-20 · Last seen 2026-05-27 · ok HTTP/1.1 200 1582 ms crawled 2026-05-27

NO · 195.204.16.200 · AS2116 Globalconnect As

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Ledende produsent av hydraulikk - systemer og komponenter | Servi
Description
Ledende produsent av hydraulikk - Servi produserer systemer og komponenter. I tillegg til et bredt sortiment av andre industriprodukter, service og vedlikehold.
Language
no
Canonical
https://www.servi.no/no
Translations
  • en
  • no

Open Graph

url
https://www.servi.no/no
title
Ledende produsent av hydraulikk - systemer og komponenter | Servi
site name
Servi
description
Ledende produsent av hydraulikk - Servi produserer systemer og komponenter. I tillegg til et bredt sortiment av andre industriprodukter, service og vedlikehold.

Technology

Server
nginx
CMS
Gatsby
jQuery
1.11.1 known XSS (<3.5)
Analytics
  • Google Tag Manager
Cookie consent
  • Cookiebot

Third-party hosts loaded (5)

  • consent.cookiebot.com×1
  • px.ads.linkedin.com×1
  • toolbox.solidcomponents.com×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • ns1.hyp.net
  • ns2.hyp.net
  • ns3.hyp.net
MX
  • 0 servi-no.mail.protection.outlook.com
TXT
  • fpu44ru1uesm872s54tea6gnui
  • l8gg6ag4o4gqt473gn4lkaph1b
Verified for
  • Google
  • OpenAI

Email authentication strong

SPF
v=spf1 ip4:85.252.22.13 ip4:195.159.144.141 ip4:51.13.78.21 ip4:195.204.16.200 ip4:85.252.23.37 include:spf.protection.outlook.com include:mail.zendesk.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:tingpnms@ag.eu.dmarcian.com, mailto:dmarc@servi.no; adkim=r; aspf=r; ri=3600; fo=1:d:s;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDxYKOPWsJpu8R9QcnJFIHxbleU7X9XFypryrHOuIDpB7xWDfnpnA1GoztdeZBzL7oOWdFNkcNRA/LIW83o7F…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Vw9H588CmHhaUbOarUq799mB5CE8NO1dOrPeqjKXWTAadFtJ2lVAoPCG38H3M84Q2yYxup0bf+9Nx…
selectors probed

Certificate (current)

Go Daddy Secure Certificate Authority - G2
from 2025-09-26 to 2026-09-05
Expires in 96 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.servi.no/no

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline' 'unsafe-eval' https://tagmanager.google.com/ https://fonts.googleapis.com/ https://*.googletagmanager.com/ https://*.cookiebot.com/ https://*.solidcomponents.com/ https://solidcomponents.com/; img-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://*.facebook.com/ https://*.googletagmanager.com/ https://ssl.gstatic.com/ https://*.gstatic.com/ https://www.google-analytics.com/ https://googleads.g.doubleclick.net/ https://www.google.com/ https://*.cookiebot.com/ https://www.solidcomponents.com/ https://px.ads.linkedin.com/ https://www.linkedin.com/; font-src 'self' 'unsafe-inline' 'unsafe-eval' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://buttons.github.io/ https://js-agent.newrelic.com/ https://bam.eu01.nr-data.net/ https://bam-cell.nr-data.net/ https://*.facebook.net/ https://*.googletagmanager.com/ https://www.google-analytics.com/ https://www.googleadservices.com/ https://googleads

Links to (5)

Linked from (1)