ycmusic.be

HTML metadata

Technology

Server

Apache

jQuery

3.7.1

Stack

PHP

Social

• facebook

DNS records live

NS

• ns1.dcube-resource.be
• ns2.dcube-resource.be
• ns4.dcube-resource.be

MX

• 10 mx1.dcube-resource.be
• 20 mx2.dcube-resource.be

Verified for

• Google

Email authentication weak

SPF

v=spf1 include:_spf.dcube-resource.be ~all

softfail (~all)

DMARC

not published

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://ycmusic.be/ycmusic.php

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• short HSTS max-age
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (1)

• facebook.com×1

Linked from (1)

• lachkaarten.com×1