sstlisa.se

HTML metadata

Technology

Server

nginx

Third-party hosts loaded (2)

• cdn.sitebuilderhost.net×1
• www.facebook.com×1

DNS records live

NS

• ns1.loopiagroup.com
• ns2.loopiagroup.com

MX

• 10 mailcluster.loopia.se
• 10 mx10.websupport.se
• 100 mx20.websupport.se
• 20 mail2.loopia.se

TXT

• spf2.0/pra a mx include:_sid.m101.websupport.se ?all

Verified for

• Google

Email authentication weak

SPF

v=spf1 include: spf.loopia.se -all

strict (-all) · multiple SPF records

DMARC

not published

DKIM

• mail: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs46W8NVyl9mrmB0k1qYznHQ82bNDqLNpBoaeI9yMj54oI/FTQ/sVIl82N0H3DOIy4lmN9A7VXAphlL…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://sstlisa.se/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• instagtam.com×1
• instagram.com×1
• facebook.com×1

Linked from (1)

• sstnet.se×1