indexo.dev

smartschool.be

.be crawl

First seen 2026-05-24 · Last seen 2026-05-31 · ok HTTP/1.1 200 2503 ms crawled 2026-05-29

BE · 193.56.132.113 · AS211268 Smartbit CommV

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Smartschool – Digitaal schoolplatform
Language
nl-NL
Generator
WordPress 6.9.4
Canonical
https://www.smartschool.be/
Translations
  • fr
  • nl
Feeds

Technology

CMS
WordPress 6.9.4
jQuery
3.7.1

Third-party hosts loaded (2)

  • stats.wp.com×2
  • gmpg.org×1

Contact

Phone

DNS records live

NS
  • ns-ext01-aws-eu-central-1.smartbit.org
  • ns-ext01-aws-eu-west-3a.smartbit.org
  • ns-ext01-dcg.smartbit.be
  • ns-ext01-gs.smartbit.be
MX
  • 10 mail-smsc.smartbit.be
TXT
Show 4 TXT records
  • duo_sso_verification=QRVtVfW1c9BASbQxLch8UdXj7vIxoN4cC3QNI1TYA4PP7m1jZJMQPaQk4avnUBGQ
  • VtIKZSe+JO62H7RjoNDzH8LD2EdvmTVPuwLytlNV8Tg=
  • have-i-been-pwned-verification=dweb_fojiolat47jfvjxvejd89wfu
  • 92mr1mf2rqzbl4mllnj3c7y0q6cbhyyl
Verified for
  • 1Password
  • GlobalSign
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:_spf-dcg.smartbit.be include:_spf-gs.smartbit.be include:mail.zendesk.com ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;sp=quarantine;pct=100;rua=mailto:dmarc-report@smartschoolmail.be;ruf=mailto:forensic-report@smartschoolmail.be
policy: quarantine · sp=quarantine
DKIM
no key found at common selectors

Certificate (current)

GlobalSign RSA OV SSL CA 2018
from 2026-05-04 to 2026-11-19
Expires in 171 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.smartschool.be/

present
  • content-security-policy-report-only
  • x-frame-options
findings
  • missing HSTS
  • missing Content Security Policy
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
content-security-policy-report-only
default-src 'self' *.smartschool.be widgets.wp.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' maps.googleapis.com *.wp.com https://ssl.p.jwpcdn.com *.wp.com use.typekit.net p.jwpcdn.com; script-src-attr 'none'; style-src 'self' *.smartschool.be 'unsafe-inline' *.wp.com; font-src 'self' *.smartschool.be *.typekit.net wordpress.com c0.wp.com s0.wp.com data:; img-src 'self' http://www.smartschool.be pixel.wp.com *.typekit.net data:; connect-src maps.googleapis.com 'self' performance.typekit.net stats.g.doubleclick.net *.google-analytics.com; frame-src player.vimeo.com 'self'; report-uri /csp-violation.php

Linked from (9)