spreekuur.nl

HTML metadata

Title

Jouw Huisarts Digitaal | Spreekuur.nl

Description

Met Spreekuur.nl regel je eenvoudig je zorg: advies vragen, medicatie bestellen, medisch dossier bekijken en samenwerken met je zorgnetwerk.

Language

nl

Canonical

https://spreekuur.nl

Feeds

RSS Feed RSS

Open Graph

url: https://spreekuur.nl
title: Jouw Huisarts Digitaal | Spreekuur.nl
locale: nl
site name: Jouw Huisarts Digitaal | Spreekuur.nl
description: Met Spreekuur.nl regel je eenvoudig je zorg: advies vragen, medicatie bestellen, medisch dossier bekijken en samenwerken met je zorgnetwerk.

Technology

Server: nginx

Third-party hosts loaded (4)

cdn.topicusplatform.nl×16
wsrv.nl×4
cdnjs.cloudflare.com×1
www.facebook.com×1

DNS records live

NS

ernest.ns.cloudflare.com
reza.ns.cloudflare.com

MX

10 protector.spam.exchange

TXT

d4bde0084fe8fef3b0bbf880d32d411df068a81d600789ecdb46082f3d275115
6a66de5dccc4df53ee1166d4ccef5f39d53ae78fcf8f647b7c000badfd07b33c

Verified for

Google
Microsoft 365

Email authentication partial

SPF

v=spf1 include:spf.mailjet.com include:_spf.topicus.nl include:spf.mandrillapp.com include:spf.geenspam.mx include:mailswitch.nl include:mail.zendesk.com ip4:185.144.224.111 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:rapport@spreekuur.nl;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4x56F6Oz64f07qrwWhVk+HtEUx6+F/vx2X/2vXxHEd6U6rvTO18gWi9u4TYcPg0Um9oAlOWhWDasT1…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZfet/Y4+86KRuOjTVtYI3t4rXWhCLl5Fo3+CyMiQzLxpBCBcr7yT1bHLlcOCBOhikviosTmcKq4Io…

selectors probed

Certificate (current)

PerfectSSL

from 2026-03-02 to 2026-09-17

Expires in 105 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://spreekuur.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
permissions-policy

findings

CSP uses wildcard sources
missing Referrer Policy

Header values

x-frame-options: SAMEORIGIN
permissions-policy: fullscreen=(*), geolocation=(), camera=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' data: *.googleapis.com *.gstatic.com wsrv.nl *.cookiebot.com *.twitter.com static.ads-twitter.com www.google.com t.co *.googletagmanager.com *.google-analytics.com *.vimeo.com vimeo.com *.vimeocdn.com *.cloudflare.com *.topicusplatform.nl *.amazonaws.com *.jquery.com *.bootstrapcdn.com *.doubleclick.net *.hotjar.io connect.facebook.net *.adform.net www.facebook.com snap.licdn.com *.linkedin.com *.oribi.io *.adsymptotic.com *.cloudfront.net *.typekit.net *.youtube.com *.soundcloud.com google-analytics.com analytics.spreekuur.nl *.googleadservices.com www.google.nl art19.com matomo.dev.cubetest.nl tr2.onlinesucces.nl cdn.onlinesucces.nl https://unpkg.com/alpinejs@3.10.3/dist/cdn.min.js *.hs-analytics.net *.hubapi.com js.hscta.net no-cache.hubspot.com *.hubspot.com *.hs-sites.com static.hsappstatic.net *.usemessages.com *.hs-banner.com *.hubspotusercontent00.net *.hubspotusercontent10.net *.hubspotusercontent20.net *.hubspotusercontent30.net *.hubspotusercontent40.net *
strict-transport-security: max-age=63072000; includeSubDomains; preload