uniarts.fi
HTML metadata
Technology
- Server
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (2)
- consent.cookiebot.com×1
- www.googletagmanager.com×1
Social
Registration
- Created
- 2012-09-21
- Name servers
-
- ns.funet.fi [128.214.46.64] [2001:708:10:54::53] [ok]
- ns-secondary.funet.fi [128.214.248.132] [2001:708:10:55::53] [ok]
- ns2.funet.fi [128.214.46.66] [2001:708::53:66] [ok]
DNS records live
- NS
-
- ns-secondary.funet.fi
- ns.funet.fi
- ns2.funet.fi
- MX
-
- 10 uniarts-fi.mail.protection.outlook.com
- TXT
-
HARICA-HNEp5G7oSKJGzZpIscIapple-domain-verification=WZmDf5oQwrzwsQT6
Email authentication partial
- SPF
-
v=spf1 include:spf.protection.outlook.com include:_spf.createsend.com include:spf.mailjet.com include:sendgrid.net include:spf-eu.exlibrisgroup.com include:mail.webropolsurveys.com ip4:128.214.82.144 ip4:128.214.82.182 ip4:188.117.37.109 ip4:130.232.247.4 ip4:130.232.207.0/25 ip4:193.64.173.0/24 -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:sviaj7ty@ag.eu.dmarcadvisor.com;policy: none (monitoring only) - DKIM
-
- selector2:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDTvXt+7N/RkrRi39Dbgmt169Bz4glL2DBQnG0EX0UOAID+3kvFEb6aAyFFyitL3aEJ2OFzc+7U/qbviqZPhj… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8PajL8y+NRcs969lim2pt5CKRuHALLECncURY1P/VDux6+x0h2eCUIwl8swKD2uStLfusIpX9skKrq5S6S… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+LEtAMvff2hnhfx3DeDINEBbSD0ut5v5omSx/0IxA02Rx/W74SH6QWBeQWPeRgbHUd7u7bzacOVbDBGbt…
selectors probed - selector2:
Certificate (current)
WR3
Expires in 43 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(self "https://*.google.com"), autoplay=(self "https://www.youtube.com"), camera=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(self "https://www.youtube.com"), fullscreen=(self "https://www.youtube.com" "https://*.google.com"), geolocation=(self "https://*.google.com"), gyroscope=(self "https://*.google.com"), keyboard-map=(), magnetometer=(self "https://*.google.com"), microphone=(), midi=(), payment=(), picture-in-picture=(self "https://www.youtube.com" "https://*.google.com"), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(self), gamepad=(), hid=(), idle-detection=(), serial=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; img-src 'self' data: www.uniarts.fi https://imgsct.cookiebot.com customer.cludo.com opiskelija.uniarts.fi www.facebook.com *.gravatar.com *.googletagmanager.com *.google-analytics.com *.gstatic.com *.googleapis.com googleads.g.doubleclick.net *.google.com *.google.fi *.fls.doubleclick.net ad.doubleclick.net ade.googlesyndication.com secure.adnxs.com *.usercentrics.eu dev.visualwebsiteoptimizer.com *.global.siteimproveanalytics.io *.ytimg.com s.w.org; font-src 'self' data: cdn.askem.com fonts.gstatic.com *.sharepointonline.com; script-src 'self' blob: 'unsafe-eval' 'unsafe-inline' consentcdn.cookiebot.com consent.cookiebot.com customer.cludo.com connect.facebook.net cdn.askem.com www.google.com/recaptcha/ www.gstatic.com/recaptcha/ *.googletagmanager.com tagmanager.google.com *.google-analytics.com ssl.google-analytics.com *.googleapis.com www.googleadservices.com googleads.g.doubleclick.net www.google.com app.usercentrics.eu dev.visualwebsiteoptimizer.com siteimprov- strict-transport-security
max-age=31536000; includeSubDomains; preload