syguro.be
HTML metadata
Technology
- Server
- nginx
- Stack
- Laravel
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- shuttle-assets-new.s3.amazonaws.com×3
- fonts.googleapis.com×2
- kit.fontawesome.com×2
- shuttle-storage.s3.amazonaws.com×1
Contact
- Phone
DNS records live
- NS
-
- ns1.combell.eu
- ns3.combell.net
- ns4.combell.net
- MX
-
- 0 syguro-be.mail.protection.outlook.com
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:spf.mandrillapp.com -allstrict (-all) - DMARC
-
v=DMARC1;p=quarantine;pct=68;aspf=r;adkim=r;policy: quarantine · pct=68 - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDb7ok0i+M0utW1zKsrwU6AFRvzB9AXbonZlP74uqXESfjVjcPP2DrYc3FqpagM3IEswwTOeLBL4c5lGXNhgg…
selectors probed - selector1:
Certificate (current)
R13
Expires in 75 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: https: blob:; font-src 'self' data: https:; connect-src 'self' https: wss:; frame-src 'self' https:; object-src 'none'; base-uri 'self'- strict-transport-security
max-age=31536000; includeSubDomains, max-age=31536000; includeSubDomains; preload
Links to (2)
- cdesign.be×1
- casier.be×1