svshk.org
svshk.org
HTML metadata
Technology
- Server
- openresty
- CMS
- WordPress 7.0
- jQuery
- 3.7.1
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- gmpg.org×1
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.loopiagroup.com
- ns2.loopiagroup.com
- MX
-
- 10 mail.svshk.org
- 20 mail2.svshk.org
Email authentication weak
- SPF
-
v=spf1 mx ip4:195.74.38.0/24 include:_spf.m101.websupport.se -allstrict (-all) - DMARC
- not published
- DKIM
-
- mail:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Sza3W9xlcGU/GkkRcK5r3uP1z6/ZVzUzo5y47UWObR0sSusr+qXRJtvmGPw1COPXRMUTDv6oeTM4Q…
selectors probed - mail:
Certificate (current)
R13
Expires in 29 days
HTTP security headers
- present
-
- content-security-policy
- referrer-policy
- permissions-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing content type protection
Header values
- referrer-policy
no-referrer-when-downgrade- permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")- content-security-policy
script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://wp.svshk.org https://avel.svshk.org https://eftersoksrapport.svshk.org https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; img-src 'self' data: blob: https://wp.svshk.org https://avel.svshk.org https://eftersoksrapport.svshk.org; object-src 'self' data: blob: https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; frame-src 'self' data: blob: https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/; form-action 'self' data: blob: https://wp.svshk.org; worker-src 'self' data: 'unsafe-inline' 'unsafe-eval' blob:https://wp.svshk.org;