sundahus.se
HTML metadata
Technology
- Server
- nginx
- CMS
- Gatsby
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (1)
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.loopia.se
- ns2.loopia.se
- MX
-
- 1 sundahus-se.mail.protection.outlook.com
- TXT
-
Show 4 TXT records
_1qiwx9dyji7iq8nk0ishm4ihdv0g16ggoogle-site-verification:okhfVJoyTy-fHMrAFogxjtQj-IsDEu4QcUgMWl0BGrQ/7zxgFenvfqktjsqo5UFGk6THf5S7wbOhmqVr7kOStaSWw3BYJei9Wx9GW8skFRHVx5pb7ABk1ePOzQIZOyjHQ==_atjfjl0pgwha55lb0rvbdrm3k574h6p
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.outlook.com include:aspmx.pardot.com include:_spf.crossnet.net include:_spf.postal.oderland.com ip4:83.140.122.97 ip4:83.140.122.108 ip4:83.140.122.96 ip4:83.140.122.99 ip6:2001:16d8:57:1::64 ip6:2001:16d8:57:1::70 ip6:2001:16d8:57:1::73 ip6:2001:16d8:57:1::57 -allstrict (-all) - DMARC
- not published
- DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6V2CfSbIv7YNUUWH5lTUKzq7LACPNty91HbQ7tnYUeDdLrgks+M2czuRlkYcIUuka0YA6NbeQg+EV4Iu9… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5KiJBjslnfyOkzRtE4cwAAdOpS7p+Zn48XkByu926dnSU5dmXR9aIUkcz2BSlTxCXpv+8e76+fijf4QVO…
selectors probed - s1:
Certificate (current)
E7
Expires in 47 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
camera=(), microphone=(), geolocation=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self' data: 'unsafe-inline' 'unsafe-eval' via.placeholder.com *.linkedin.com *.posthog.com *.licdn.com *.google.com *.gstatic.com *.googleapis.com *.google-analytics.com *.msecnd.net *.youtube.com *.vimeo.com *.amazonaws.com *.vimeocdn.com *.cdn.net *.facebook.net *.facebook.com *.umbraco.org *.umbraco.com *.googletagmanager.com *.pardot.com *.reachmee.com *.e-space.se jumoo.co.uk *.clarity.ms *.google.se *.b-cdn.net *.ibinder.com *.akamaihd.net *.wistia.com *.hotjar.com *.pingdom.net *.doubleclick.net *.ytimg.com *.mynewsdesk.com *.leadoo.com *.bing.com *.segment.com *.github.com *.teamwalnut.com *.cognitoforms.com *.cookiebot.com *.googleadservices.com about: blob:; connect-src 'self' ws://*.com ws://*.se *.bing.net *.posthog.com *.akamaihd.net *.wistia.com *.litix.io *.google-analytics.com *.visualstudio.com *.pingdom.net *.umbraco.org *.umbraco.com *.doubleclick.net *.leadoo.com *.oribi.io *.bing.com *.google.com *.clarity.ms *.hotjar.io *.hotjar.com *.googlesyndicatio- strict-transport-security
max-age=31536000
Links to (4)
- bimalliance.se×1
- ibinder.com×1
- linkedin.com×1
- sgbc.se×1