vrtwente.nl

HTML metadata

Title: Veiligheidsregio Twente
Description: Veiligheidsregio Twente werkt samen met partners en inwoners aan een veilig Twente.
Language: nl
Generator: Drupal 10 (https://www.drupal.org)
Canonical: https://www.vrtwente.nl/

Technology

CMS: Drupal

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×3
fonts.gstatic.com×1

Social

Contact

Email

info@vrtwente.nl

Phone

088 2567800

DNS records live

NS

nsauth1.introweb.nl
nsauth2.introweb.nl
nsauth3.introweb.net

MX

1 vrtwente-nl.mail.protection.outlook.com

Verified for

Canva
Google

Email authentication strong

SPF

v=spf1 ip4:91.234.193.43/32 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc.rua@vrtwente.nl; ruf=mailto:dmarc.ruf@vrtwente.nl

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeI01Yzw+YUt9sKThtzIVydfv1qN5aKh7RPlHbjkIV0MfEjbcQyQ+UvQ7n7bXgML7YSbnycgNVNq9a97ve9R…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSXJdRNs60InVL+9AFrNt9wKn9qvlNiiOJyWa/MsjCxhE8Xd8t4hCKJ7pMheF3ENiQX3wmaXYmnT86L2aP…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsp+cGbvu+bnhT5DQt3RYr9XHSL96Px3E21RaKa+IiwE6dYjaHVipDm53tq72k4TebqmTZ3YByJ0+7lCrYk…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-08-25 to 2026-09-26

Expires in 117 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.vrtwente.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' cdn.jsdelivr.net *.googletagmanager.com *.google-analytics.com *.googleapis.com *.twitter.com *.google.com *.gstatic.com *.scribit.pro *.youtube.com *.cookiefirst.com cdnjs.cloudflare.com *.googletagmanager.com *.cookiefirst.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com cdn.jsdelivr.net *.cookiefirst.com *.googletagmanager.com; img-src 'self' *.gstatic.com *.googleapis.com *.google-analytics.com *.vrtwente.nl vrtwente.nl *.cookiefirst.com *.googlesyndication.com data: *.googletagmanager.com; media-src *.googleapis.com; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.twitter.com *.google.com *.vimeo.com *.googletagmanager.com; font-src 'self' themes.googleusercontent.com fonts.gstatic.com data:; connect-src 'self' *.google-analytics.com *.googleapis.com localhost:8081 twenteveilig.nl *.twenteveilig.nl *.vrtwente.nl vrtwente.nl *.scribit.pro *.cookiefirst.com *.googlesyndication.com; upgrade-insecure-requests
strict-transport-security: max-age=31536000, max-age=31536000; includeSubDomains