skikk.eu
skikk.eu
HTML metadata
Technology
- Server
- BunnyCDN-DE1-1332
- Analytics
-
- Plausible
Third-party hosts loaded (2)
- cdn.kustomerapp.com×2
- plausible.io×1
Social
DNS records live
- NS
-
- coco.bunny.net
- kiki.bunny.net
- MX
-
- 10 mail.skikk.eu
- TXT
-
mandrill_verify.4XZ9DEbIZGDbzNzb5CXS5Amandrill_verify.X5v8iV0UhNfYuSMpbNtqDA
- Verified for
-
- Apple
Email authentication strong
- SPF
-
v=spf1 redirect=skikk.eu.hosted.spf-report.comno all qualifier - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:ec2c5321@mxtoolbox.dmarc-report.com; ruf=mailto:ec2c5321@forensics.dmarc-report.com; fo=1policy: quarantine - DKIM
-
- k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - k2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA… - s1:
"k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/FErwjSQMb/gws93Ww9+egVq+SwncKyAai5j42uw33p5/5QDCXUWpEJD5OeDlxI462NEfIds8rDreoRQnB3yvhBCOdl…
selectors probed - k1:
Certificate (current)
E8
Expires in 71 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), clipboard-read=(), clipboard-write=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(self), speaker=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), vr=(), web-share=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://plausible.io https://*.clarity.ms/ https://cdn.jsdelivr.net/ https://cdn.kustomerapp.com https://*.twiliocdn.com https://*.google.com https://www.googletagmanager.com/ https://connect.facebook.net/ https://googleads.g.doubleclick.net/ https://*.bing.com/ https://dashboard.webwinkelkeur.nl/ https://store-locator.iwdagency.com https://maps.googleapis.com https://live.store-locator.nx.iwdfun.com https://*.googleapis.com; script-src-elem 'self' 'unsafe-inline' https://html2canvas.hertzen.com/dist/html2canvas.min.js https://plausible.io https://*.clarity.ms/ https://cdn.jsdelivr.net/ https://cdn.kustomerapp.com https://*.twiliocdn.com https://*.google.com https://www.googletagmanager.com/ https://connect.facebook.net/ https://googleads.g.doubleclick.net/ https://*.bing.com/ https://dashboard.webwinkelkeur.nl/ https://store-locator.iwdagency.com https://live.store-locator.nx.iwdfun.com https://maps.googleapis.com htt- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
same-origin
Links to (6)
- facebook.com×2
- instagram.com×2
- linkedin.com×2
- threads.net×2
- x.com×2
- youtube.com×2