akwl.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 3421 ms crawled 2026-05-16

DE · 193.53.250.21 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

Start » Apothekerkammer Westfalen-Lippe

Language

Canonical

https://www.akwl.de/

Feeds

Technology

Server: Apache
CMS: WordPress

Third-party hosts loaded (1)

dashboard.stage.bio×1

Social

Contact

Email

Registration

Updated

2021-08-24

Name servers

ns1.telekom.net.
pns.dtag.de.

DNS records live

NS

ns1.telekom.net
pns.dtag.de

MX

10 akwl-de.mail.protection.outlook.com

TXT

MS=ms94474910

Email authentication weak

SPF

v=spf1 a mx ip4:159.69.114.27 ip4:185.181.132.62 ip4:195.243.243.107 ip4:193.53.250.21 ip4:188.40.239.168 include:spf.emailsys.net include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

not published

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+mqc1KEWoLxal5y1cPELVhqR+QhjTFcOq9bQ4vyKkq14csTKuzly77ApZrW5vX6zaDQQ9evFlysEn…

selectors probed

Certificate (current)

R12

from 2026-04-03 to 2026-07-02

Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.akwl.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: origin
x-frame-options: deny
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://www.akwl.de; img-src * data:; style-src 'self' 'unsafe-inline' https://*.b-ite.com/ https://fonts.googleapis.com/css https://api.signalize.com/ https://ai.uniplus-software.de/ http://localhost:3000/; script-src https://www.akwl.de https://maps.googleapis.com/ https://www.instagram.com/ https://code.etracker.com/ https://api.signalize.com/ https://www.etracker.de/ https://*.b-ite.com/ https://www.google-analytics.com https://www.googletagmanager.com/ https://matomo.uniplus-software.de/matomo/matomo.js https://*.emailsys1a.net/ https://www.paypal.com/ https://dashboard.stage.bio/ 'unsafe-inline' 'unsafe-eval'; font-src 'self' data: https://api.signalize.com/ https://fonts.gstatic.com/; frame-src 'self' https://share.uniplus-software.de/ https://t921c9cab.emailsys1a.net/ https://www.youtube-nocookie.com/ https://www.youtube.com/ https://www.instagram.com/ https://vimeo.com/ https://www.paypal.com/ https://www.sandbox.paypal.com/ https://uniplus.app.n8n.cloud/
strict-transport-security: max-age=31536000; includeSubDomains