ameise.app
ameise.app
HTML metadata
DNS records live
- NS
-
- ns1.dioneradns.de
- ns2.dioneradns.de
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 24 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
Header values
- referrer-policy
strict-origin- permissions-policy
interest-cohort=()- x-content-type-options
nosniff- content-security-policy
style-src 'self' 'unsafe-inline' https://www.maklerinfo.biz; connect-src 'self' https://ekr.zdassets.com https://blaudirekt.zendesk.com https://uploads.ameiseapis.com https://ekr.zendesk.com https://*.zendesk.com https://*.zdassets.com https://*.sentry.io; img-src 'self' data: blob: https://thumbs.dionera.com https://storage.googleapis.com https://blaudirekt.zendesk.com https://www.maklerinfo.biz; font-src 'self' data: https://www.maklerinfo.biz; frame-src 'self' https://www.maklerinfo.biz; default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://static.zdassets.com https://www.maklerinfo.biz https://blaudirekt.zendesk.com- strict-transport-security
max-age=63072000; includeSubDomains; preload- cross-origin-opener-policy
same-origin