indexo.dev

zadelhoff-fonds.nl

.nl crawl

First seen 2026-05-25 · Last seen 2026-05-29 · ok HTTP/1.1 200 4284 ms crawled 2026-05-29

DK · 77.111.243.23 · AS51468 One.com A/S

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Zadelhoff Fonds – Voor monumentaal en cultureel van belang zijnde gebouwen
Language
nl-NL
Generator
WordPress 6.9.4
Canonical
https://www.zadelhoff-fonds.nl/
Feeds

Technology

Server
Apache
CMS
WordPress 6.9.4
PHP
8.4.21
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×2

DNS records live

NS
  • ns01.hostnet.nl
  • ns02.hostnet.nl
MX
  • 10 mx1.mailpod13-cph3.g1i.hostnet.nl
  • 10 mx2.mailpod13-cph3.g1i.hostnet.nl
  • 10 mx3.mailpod13-cph3.g1i.hostnet.nl
  • 10 mx4.mailpod13-cph3.g1i.hostnet.nl

Email authentication strong

SPF
v=spf1 a mx include:_spf.hostnet.nl -all
strict (-all)
DMARC
v=DMARC1; p=reject
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-09 to 2026-07-08
Expires in 35 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://www.zadelhoff-fonds.nl/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Linked from (1)