indexo.dev

vandorphout.nl

.nl crawl

First seen 2026-05-26 · Last seen 2026-05-30 · ok HTTP/1.1 200 431 ms crawled 2026-05-30

DE · 167.235.246.47 · AS24940 Hetzner Online GmbH

Reputation 95/100 weak security headers

sector b2b services type homepage

HTML metadata

Title
Van Dorp Hout - We begrijpen elkaar - Van Dorp Hout
Description
Wij zijn gespecialiseerd als houtleverancier aan particulieren, hoveniers en aan de grond-, weg- en waterbouwsector. Bekijk ons assortiment of bestel online!
Language
nl
Canonical
https://www.vandorphout.nl/

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • chimpstatic.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • nsauth01.solcon.nl
  • nsauth02.solcon.nl
  • nsauth03.solcon.nl
MX
  • 10 vandorphout-nl.mail.protection.outlook.com
  • 50 vandorphout-nl.mail.protection.outlook.com
Verified for
  • Google
  • OpenAI

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:_spf.exonet.nl include:_spf.exsilia.net include:g2o-mailing.nl ip4:5.39.185.0/24 ip4:20.101.117.63 include:servers.mcsv.net ip4:167.235.246.47 ip4:178.22.60.53 ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc@vandorphout.nl; ruf=mailto:dmarc@vandorphout.nl; fo=1; pct=100
policy: quarantine
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCXFSpluQV6/A8v+HJNUc3h99+im6m74FzcbvkkEqRe/Vb8OKe6KSbFiBEJZ4tgCMEjqxFhMkoIPH0cbpFGoo…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

E8
from 2026-05-14 to 2026-08-12
Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.vandorphout.nl/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy-report-only
font-src *.gstatic.com 'self' data: *.doubleclick.net *.facebook.com https://www.gstatic.com https://fonts.gstatic.com *.fontawesome.com fonts.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.facebook.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centin

Links to (13)

Linked from (1)