wassenaar.nl

HTML metadata

Title: Gemeente Wassenaar | Wassenaar
Description: Officiële website van gemeente Wassenaar. Hier vindt u alle informatie, nieuwsberichten en dienstverlening van gemeente Wassenaar.
Language: nl
Generator: SIMsite powered by Drupal
Canonical: https://www.wassenaar.nl/

Open Graph

url: https://www.wassenaar.nl/
title: Home
locale: nl
site name: Wassenaar
description: Officiële website van gemeente Wassenaar. Hier vindt u alle informatie, nieuwsberichten en dienstverlening van gemeente Wassenaar.
updated time: 2026-04-13T10:01:16+02:00

Technology

CMS: Drupal
JS framework: Next.js

Third-party hosts loaded (3)

cuatro.sim-cdn.nl×71
fonts.bunny.net×1
wassenaar.logging.simanalytics.nl×1

Social

Registration

Registrar

Realtime Register

Created

1997-11-03

Updated

2021-11-30

Name servers

ns1.argewebhosting.eu
ns2.argewebhosting.com
ns3.argewebhosting.nl

DNS records live

NS

ns1.argewebhosting.eu
ns2.argewebhosting.com
ns3.argewebhosting.nl

MX

10 wsn-mail.wassenaar.nl

TXT

Show 13 TXT records

39cda897c1ced296a5146890fdea3888b0e2ebc7981af753bbe37d6f0755660c
jUgSBsRW8Jfjm3n5HVCF0b8wyil6hnhcSWIJu5bAl4P3jKh4W8snQmNQeBYSP9a2
FiYFs5b55bfbB3jxs6czPC2400FOTcHW3SfEClnfS4LwbHDHgGXROrDOrEumgS27
5CvtFJ7BemreLRkRwzKlrGBRA12KJVMLdrNjYIFnf8yl3euPF1voEboDCwepFSor
tWskaIV37K8Zs0UqR7DMoaGhW3Uhz53yQNE40rzZRZSsdzWLo4umfnirYnBJMXBV
v=NTA7516-1;startdate=2020-01;enddate=2023-06;provider=zorgmail;ntamx=10 relay.zorgmail.nl
ntjsGFV1pCJ3aBg0EUK7KAoPb6V46+djBVwqqDvXPxYlBiqrSg8Vl6hL52y2M36iwXpkdbPmRdvsI9RkIcv5/A==
EqHi7HTg2gFvRjx02KIrFMOggIPjxOOfaSgAn1yl1PHtK3Ro58eFIpIU0xBDwHvb
c2cb828995169fa2d09bdda08a9d6e9920a89c396f5c3b5ddc7b25640ab3e801
MS=2FD0029414B977558EE65D53ED7A0F756023E32B
yQKQLH6fSsg91F8pPMZ2ErV8ysaq668qVgTT3zHI6cvvlNUBOcdzz6Z8jUgQMcFN
89f124120927969e64ff727084ceaf18da467a8b82d5163c89a5a6a8c77e417c
infoblox-domain-mastery=bf35e47e0aeb5149eff3dd8d7c378eb5bcb8d18b8d4a35c42086679e8d05c455d2

Verified for

Apple
Google
Meta
Microsoft 365

Email authentication strong

SPF

v=spf1 ip4:20.103.184.18 ip4:212.178.211.15 ip4:212.178.211.16 include:_spf.zorgmail.nl include:spf.protection.outlook.com ip4:83.217.77.34 ip4:31.223.171.250 ip4:78.108.130.89 include:spf.eprov.nl include:spf.topdesk.net include:spf.simgroephosting.nl include:spf.pinkprivate.cloud ip4:194.13.163.7 ip4:194.53.14.66 ip4:69.169.224.0/20 include:spfklant.pinkroccade.nl -all

strict (-all)

DMARC

v=DMARC1; p=reject; pct=100; rua=mailto:dmarc_report@wassenaar.nl,mailto:rapportages@dmarc.ibdgemeenten.nl; ruf=mailto:dmarc_report@wassenaar.nl; fo=1; adkim=r; aspf=r

policy: reject (enforced)

DKIM

selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCyMG3h/bYDIU9tsdgtwRS8amGZhN1DxtJn6pjwBQWB76NSPQuPvKfQ7x92ejb8xDh+2ZVsfBp0eq5g7BV1IB…
mail: v=DKIM1; k=rsa; t=y; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/voygrmA5pVJzE/VCg4Yynugrx/2vFbw8D04oS5/chTZhXW+wR2BL0T09coDZUt7Dch/wdJA…

selectors probed

Certificate (current)

Thawte TLS RSA CA G1

from 2026-04-08 to 2026-10-24

Expires in 145 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.wassenaar.nl/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: same-origin
x-content-type-options: nosniff
content-security-policy: default-src 'self'; img-src * data: 'unsafe-inline' blob:; style-src * 'unsafe-inline' blob:; font-src * data:; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src *; form-action *; media-src *.readspeaker.com *.streamlock.net *.archieven.nl storage.googleapis.com scribit-pro-hosting.storage.googleapis.com scribit-pro.storage.googleapis.com app.talkjs.com *.bbvms.com *.cloudfront.net data: 'self' blob:; frame-src *; frame-ancestors 'self' https://*.polly.help; worker-src * 'unsafe-inline' blob:;
strict-transport-security: max-age=31536000
content-security-policy-report-only: default-src 'self'; img-src * data: blob:; style-src * 'unsafe-inline' blob: https://fonts.bunny.net; font-src 'self' data: https://fonts.bunny.net https://fonts.gstatic.com https://cuatro.sim-cdn.nl https://cuatro.sim-cdn-acceptatie.nl https://cuatro.sim-cdn-test.nl; script-src 'nonce-NzQ1YTY2NmItOGIwZC00ZWIyLTk0Y2EtMzY0OTcwZjhhYjVl' 'strict-dynamic' 'report-sample'; connect-src *; form-action 'self'; media-src https://*.readspeaker.com https://*.streamlock.net https://storage.googleapis.com https://scribit-pro-hosting.storage.googleapis.com https://scribit-pro.storage.googleapis.com https://app.talkjs.com 'self' blob:; frame-src *; frame-ancestors 'self' https://*.polly.help; worker-src * 'unsafe-inline' blob:; report-uri /api/csp-report