indexo.dev

ungfritid.no

.no crawl

First seen 2026-05-31 · Last seen 2026-05-31 · ok HTTP/1.1 200 116 ms crawled 2026-06-01

US · 107.178.254.230 · AS396982 Google LLC

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Ungfritid.no
Description
Ungfritid.no er en digital oversikt over fritidsaktiviteter for barn og unge der du bor.
Language
en

Open Graph

url
http://ungfritid.no/
title
Ungfritid.no
description
Ungfritid.no er en digital oversikt over fritidsaktiviteter for barn og unge der du bor.

Technology

Analytics
  • Plausible

Third-party hosts loaded (6)

  • cdn.jsdelivr.net×2
  • cdnjs.cloudflare.com×2
  • fast.fonts.net×1
  • plausible.io×1
  • translate.google.com×1
  • upload-widget.cloudinary.com×1

DNS records live

NS
  • ns-cloud-e1.googledomains.com
  • ns-cloud-e2.googledomains.com
  • ns-cloud-e3.googledomains.com
  • ns-cloud-e4.googledomains.com
MX
  • 1 ungfritid-no.mail.protection.outlook.com
Verified for
  • Google
  • Meta
  • Microsoft 365

Email authentication partial

SPF
v=spf1 a mx include:spf.protection.outlook.com include:_spf.google.com include:servers.mcsv.net include:sendgrid.net include:_spf.sndr.no -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA64FfcnaF1KDGMHb8LBk1aGQ94v+56OEkBpC64wNWNyncr9MqhjVaohCK7V9CoRsmjfN1gaSnWvw/1vbbd/…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3MbKNcgY4dVVbfqbZ4VBjeHddY5SwqbwbEs0+/to8EJ1NZOxjf0FEYwAP1E97Sj21uU+h4TSzoWplfeV06ySOxD…
selectors probed

Certificate (current)

WR3
from 2026-05-22 to 2026-08-20
Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://ungfritid.no/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
default-src 'self' https://cdn.livechatinc.com;script-src 'self' localhost:3011 https://www.googleapis.com/auth/analytics.readonly https://maps.googleapis.com https://cdn.jsdelivr.net https://cdn.ravenjs.com https://translate.google.com https://translate.googleapis.com https://translate-pa.googleapis.com/ https://maps.googleapis.com/ https://cdn.livechatinc.com https://livechatinc.com https://*.livechatinc.com https://upload-widget.cloudinary.com https://connect.facebook.net https://sc-static.net https://*.googletagmanager.com https://www.googletagmanager.com/gtm.js https://www.google-analytics.com https://www.google-analytics.com/analytics.js https://sdk.letshare.app/sdk.js https://*.doubleclick.net https://stats.g.doubleclick.net https://www.googleadservices.com https://www.youtube.com https://cdnjs.cloudflare.com https://tr.snapchat.com/ https://consent.cookiebot.com https://consentcdn.cookiebot.com 'unsafe-inline' 'unsafe-eval';img-src 'self' data: https://res.cloudinary.com https:
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin

Linked from (1)