indexo.dev

sinfra.se

.se crawl

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 563 ms crawled 2026-06-02

US · 162.159.140.127 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Sinfra gör hållbara inköp enkelt - Sinfra
Description
Sinfra gör hållbara inköp enkelt. Med ramavtal och inköpsresurser skapar vi trygghet, effektivitet och värde för våra medlemmar inom samhällsinfrastruktur. V...
Language
sv

Open Graph

url
https://sinfra.se/startsida/
title
Sinfra gör hållbara inköp enkelt
site name
sinfra.se
description
Sinfra gör hållbara inköp enkelt. Med ramavtal och inköpsresurser skapar vi trygghet, effektivitet och värde för våra medlemmar inom samhällsinfrastruktur. V...

Technology

CDN
Cloudflare
jQuery
3.0.0 known XSS (<3.5)
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • ajax.aspnetcdn.com×3
  • fonts.googleapis.com×2
  • fonts.gstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone
Address
Kungsbroplan 2, 112 27, Stockholm, SE

DNS records live

NS
  • ns1.loopia.se
  • ns2.loopia.se
MX
  • 10 sinfra-se.mail.protection.outlook.com
TXT
  • Limeverify: C09206402BE6386
Verified for
  • Microsoft 365

Email authentication partial

SPF
v=spf1 +ip4:46.16.234.221 +ip4:46.16.233.150 +ip4:46.16.233.149 +include:spf.protection.outlook.com +include:spf.bedrock.lime-technologies.com +ip4:80.76.154.196 +a:mailout01.sth.basefarm.net +include:spf.invoiceportal.net +ip4:193.93.249.220 +ip4:92.43.39.3 +include:_vsp.oderland.com ~all
softfail (~all)
DMARC
v=DMARC1;p=none;rua=mailto:dmarc-reports@sinfra.se,mailto:dmarc_agg@vali.email;ruf=mailto:dmarc-reports@sinfra.se;fo=1
policy: none (monitoring only)
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdfSPaFoePVGjBFNPnAHqlYP3/3zlY6mSWkeNfqQLo599AgIEKjpirzWZAI62HgjxmF+/aDZG6Wziq…
  • selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPkVwzJHif13E4SpYukxt5OFNbGIB9JiKYiIXDtIiTTo0DnSCzRKlRZXFJPMG5TUHUIWsq7PYtOIjgzcPZX2…
selectors probed

Certificate (current)

WE1
from 2026-05-29 to 2026-08-27
Expires in 85 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://sinfra.se/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
img-src 'self' our.umbraco.com data: dashboard.umbraco.com img.youtube.com www.googletagmanager.com imgsct.cookiebot.com consent.cookiebot.com https://c.ba.contentsquare.net; default-src 'self' our.umbraco.com marketplace.umbraco.com; script-src 'self' 'nonce-ZTQ0OThmZDMtMjk3Yy00ODA5LTljY2EtNTBjNjI4M2IyY2Vj' www.googletagmanager.com consent.cookiebot.com consentcdn.cookiebot.com https://www.google.com; script-src-elem 'self' www.googletagmanager.com consent.cookiebot.com consentcdn.cookiebot.com https://www.google.com 'nonce-ZTQ0OThmZDMtMjk3Yy00ODA5LTljY2EtNTBjNjI4M2IyY2Vj'; font-src 'self' fonts.gstatic.com; frame-src 'self' https://www.youtube.com https://player.vimeo.com https://www.googletagmanager.com https://consentcdn.cookiebot.com https://www.google.com; worker-src 'self' blob: https://www.google.com; media-src 'self' data: blob: our.umbraco.com https://*.azurewebsites.net; style-src 'unsafe-inline' 'self' fonts.googleapis.com; connect-src 'self' https://www.google.com https://
strict-transport-security
max-age=2592000

Links to (2)

Linked from (3)