indexo.dev

stockholmfilmfestival.se

.se crawl

First seen 2026-05-21 · Last seen 2026-06-04 · ok HTTP/1.1 200 2040 ms crawled 2026-05-27

SE · 13.49.199.225 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Stockholm International Film Festival
Language
sv-SE

Open Graph

title
Stockholm International Film Festival
locale
sv_SE
description
STOCKHOLMS FILMFESTIVAL – MER ÄN BARA FILM. Filmfestivalen i all ära men vi gör mer än så. Vi vill visa film året om för vår publik, både den vuxna och den ...

Technology

Third-party hosts loaded (3)

  • app.lupper.se×1
  • script.unseald.com×1
  • www.facebook.com×1

DNS records live

NS
  • ns1.loopia.se
  • ns2.loopia.se
MX
  • 1 stockholmfilmfestival-se.mail.protection.outlook.com
TXT
  • 9rjd360r4mzn0tlylwhnvd969k8yk55n

Email authentication partial

SPF
v=spf1 a mx ip4:81.95.98.219 ip4:217.198.66.57 include:spf.mandrillapp.com include:spf.fouredge.se include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@rule.se; ruf=mailto:authfail@rule.se
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-21 to 2026-07-20
Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.stockholmfilmfestival.se/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src http: https: 'unsafe-inline' https://www.googletagmanager.com https://www2.stockholmfilmfestival.se/; style-src 'self' blob: https: 'unsafe-inline' https://www2.stockholmfilmfestival.se/; img-src data: http: https:; object-src 'none'; base-uri 'none'; child-src 'self'; font-src 'self' fonts.gstatic.com; frame-src assets.braintreegateway.com *.google.com *.youtube.com *.youtu.be *.vimeo.com *.youtube-nocookie.com consentcdn.cookiebot.com *.kustom.co *.playground.kustom.co
strict-transport-security
max-age=31536000

Links to (1)

Linked from (3)