vaph.be

HTML metadata

Technology

CMS

Drupal

Third-party hosts loaded (1)

• prod.widgets.burgerprofiel.vlaanderen.be×4

DNS records live

NS

• ns.be.hostbasket.com
• ns1.vaph.be
• ns2.vaph.be

MX

Show 7 MX records

• 10 aspmx.l.google.com
• 20 alt1.aspmx.l.google.com
• 20 alt2.aspmx.l.google.com
• 30 aspmx2.googlemail.com
• 30 aspmx3.googlemail.com
• 30 aspmx4.googlemail.com
• 30 aspmx5.googlemail.com

TXT

• MS=E20F45A5162F58A349052954C6CA08D2D0B72FC3

Verified for

• Google

Email authentication partial

SPF

v=spf1 ip4:193.53.19.5 ip6:2a00:f620:1::ce:c135:1305 ip4:168.245.13.203 include:_spf.google.com include:servers.mcsv.net ~all

softfail (~all)

DMARC

v=DMARC1; p=none; adkim=s; aspf=s;rua=mailto:dmarc-reports@vaph.be; ruf=mailto:dmarc-reports@vaph.be;fo=1;

policy: none (monitoring only)

DKIM

Show 4 DKIM selectors

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaVsKPzm0pM12YbVL96SNBCLhb/ogowdobBBKzXXxe4l0iHR/y3szGxjwjBzshUqNEFgNmd4E5CuMU…
• k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumSE9sKm7ehKrAl6HNSKJel7OzxVf5OgzX0VLXlbXGj+KqlbZ5idwQXrcjtg/kViVjCYanUaO4i5/79HSQ…
• s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9HJk1Q/+hwudlLWP7WdQbgSp/qGN0Y+DnbdNMqyLZ+jP4/2sZ8Du/sxFi8St1lsGAG9CsP3FoRIv63Er+A…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.vaph.be/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Linked from (1)

• leersteuncentrum-kasterlinden.be×1