webhosting.dk
HTML metadata
Technology
- Server
- Nginx
DNS records live
- NS
-
- ns.webhosting.dk
- ns2.mywebtonet.com
- ns2.webhosting.dk
- ns3.webhosting.dk
- ns7.webhosting.dk
- MX
-
- 10 webhosting.dk
Email authentication strong
- SPF
-
v=spf1 ip4:157.250.160.20/32 ip4:95.217.166.205/32 ip4:159.69.216.38/32 ip4:157.250.160.15/32 ip4:157.250.160.19/32 ip6:2a06:b00:ffff:ffff::2110/124 -allstrict (-all) - DMARC
-
v=DMARC1; p=reject;sp=none; rua=mailto:dmarc@webhostingsupport.dk; ruf=mailto:support@webhostingsupport.dk;aspf=s;adkim=s;policy: reject (enforced) · sp=none - DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 235 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline' *.criipto.id cdnjs.cloudflare.com *.maxcdn.com ajax.googleapis.com maxcdn.bootstrapcdn.com *.facebook.com *.facebook.net webhosting.dk *.webhosting.dk fonts.gstatic.com googleadservices.com doubleclick.net *.doubleclick.net *.googleadservices.com; ;frame-ancestors 'self' *.webhosting.dk webhosting.dk ajax.googleapis.com *.facebook.com *.facebook.net googleadservices.com doubleclick.net *.doubleclick.net *.googleadservices.com; img-src https://* data:; frame-src 'self' 'unsafe-inline' ajax.googleapis.com *.facebook.com *.facebook.net webhosting.dk *.webhosting.dk fonts.gstatic.com doubleclick.net *.doubleclick.net *.googleadservices.com googleadservices.com;- strict-transport-security
max-age=31536000; includeSubDomains; preload