indexo.dev

sivilforsvaret.no

.no crawl

First seen 2026-05-21 · Last seen 2026-05-30 · ok HTTP/1.1 200 2213 ms crawled 2026-05-27

SE · 217.114.94.2 · AS30811 Optimizely AB

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Sivilforsvaret
Language
no
Canonical
https://www.sivilforsvaret.no/

Open Graph

url
https://www.sivilforsvaret.no/
title
Sivilforsvaret
locale
no

Technology

CDN
Cloudflare
Analytics
  • Plausible

Third-party hosts loaded (2)

  • plausible.io×1
  • policy.app.cookieinformation.com×1

Contact

Phone

Registration

Registrar
GROUP.ONE NORWAY AS
Created
2001-02-28
Updated
2026-01-29
Name servers
  • ns01.proisp.no
  • ns02.proisp.no

DNS records live

NS
  • ns01.proisp.no
  • ns02.proisp.no
MX
  • 10 mx2.online.no
TXT
  • _woh0fzztxwebvleggotlist671nlb0n

Email authentication partial

SPF
v=spf1 include:_spf.proisp.no mx ip4:89.250.123.21 a:ai-p-s1-ext.ai.basefarm.net include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-03-31 to 2026-06-29
Expires in 28 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.sivilforsvaret.no/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • short HSTS max-age
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
permissions-policy
publickey-credentials-get=(), xr-spatial-tracking=(), screen-wake-lock=(), cross-origin-isolated=(), web-share=(), picture-in-picture=(), keyboard-map=(), encrypted-media=(), display-capture=(), usb=(), serial=(), payment=(), midi=(), microphone=(), magnetometer=(), geolocation=(), camera=(), fullscreen=(), autoplay=(), accelerometer=()
x-content-type-options
nosniff
content-security-policy
script-src https://js.monitor.azure.com 'self' blob: 'unsafe-inline' *.cookieinformation.com code.highcharts.com mfstatic.com policy.app.cookieinformation.com plausible.io 'nonce-2b2d74d6-1f78-4505-b231-c5a23eea8dca'; frame-src 'self' www.youtube.com www.youtube.be player.vimeo.com play.mediaflow.com *.cookieinformation.com policy.app.cookieinformation.com; connect-src https://dc.services.visualstudio.com https://js.monitor.azure.com 'self' *.cookieinformation.com *.mediaflow.com export.highcharts.com mfstatic.com policy.app.cookieinformation.com plausible.io; font-src 'self' data: dhm5hy2vn8l0l.cloudfront.net mfstatic.com 'nonce-2b2d74d6-1f78-4505-b231-c5a23eea8dca'; img-src 'self' blob: data: assets.mediaflowpro.com mfstatic.com; style-src 'self' 'unsafe-inline' mfstatic.com www.brsk.no; media-src 'self' blob:; manifest-src 'self'; frame-ancestors ; form-action 'self' https://localhost:9400/ https://*.dsb.no; default-src ; base-uri 'self';
strict-transport-security
max-age=2592000

Links to (3)

Linked from (3)