squash.nl
squash.nl
HTML metadata
Technology
- Server
- Microsoft-IIS
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (2)
- consent.cookiebot.com×1
- www.googletagmanager.com×1
Social
DNS records live
- NS
-
- ns0.transip.net
- ns1.transip.nl
- ns2.transip.eu
- MX
-
- 10 squash.nl
- 100 mx18.internl.net.squash.nl
- 200 fallback1.server.eu.squash.nl
- 300 fallback2.server.eu.squash.nl
- TXT
-
mandrill_verify._RbRigqatDwIBYGiaClw4g
Email authentication partial
- SPF
-
v=spf1 include:spf.mandrillapp.com ?allneutral (?all) - DMARC
-
v=DMARC1; p=nonepolicy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
GeoTrust TLS RSA CA G1
Expires in 82 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
sameorigin- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline';script-src 'self' cdnjs.cloudflare.com i.icomoon.io maps.googleapis.com consent.cookiebot.com consentcdn.cookiebot.com www.googletagmanager.com googletagmanager.com 'unsafe-eval' 'unsafe-inline';style-src 'self' fonts.googleapis.com 'unsafe-inline';connect-src 'self' contentanalyzer.azurewebsites.net i.icomoon.io region1.google-analytics.com consentcdn.cookiebot.com maps.googleapis.com;font-src 'self' data: fonts.gstatic.com;form-action 'self' accounts.google.com;img-src 'self' data: maps.googleapis.com maps.gstatic.com data: foys.imgix.net;frame-ancestors 'self';frame-src *- strict-transport-security
max-age=31536000