indexo.dev

asb.or.at

.at crawl dns

First seen 2026-06-01 · Last seen 2026-06-02 · ok HTTP/1.1 200 635 ms crawled 2026-06-01

DE · 49.13.54.5 · AS24940 Hetzner Online GmbH

Reputation 69/100 wrong cert dmarc monitor-only

Classifying

HTML metadata

Title
Samariterbund Linz
Description
Samariterbund, Rettungsdienst, Sozialdienst, Linz, Feldkirchen, Alkoven, Bad Ischl, Rufhilfe, Erste Hilfe Kurse, Schulungen, Behindertenfahrdienst, AVO, Validation, Essen auf Räder, u.v.m.
Language
de

Technology

Server
nginx
CMS
WordPress
PHP
8.2.29 security-only
jQuery
3.7.1

Social

Contact

Email
Phone

DNS records live

NS
  • helium.ns.hetzner.de
  • hydrogen.ns.hetzner.com
  • oxygen.ns.hetzner.com
MX
  • 10 mail.asb.or.at
TXT
  • 6UOO/Zu4LaxXKfrwX9TkcYB0uLrbe15q+F+MRY6R5bjkioJlmZk7ght1y/EoD0Sd98nm9hpR0Bu0qCsrhpvBUw==
Verified for
  • Brevo
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 mx a:smtp.fundraisingbox.com include:spf.postal.asb.or.at include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiV/CxNTsJ8Xo4YNyqCjv1jvTcFtqEFa85pE55g/57evaj7dmgXd7uOVOxQsrwz6F74YcQxlSYFblo…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current) wrong cert

E7
from 2026-04-29 to 2026-07-28
Expires in 53 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.asb.or.at/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-content-type-options
nosniff
content-security-policy
default-src 'self'; img-src 'self' data: https://secure.fundraisingbox.com; script-src 'self' 'unsafe-inline' https://secure.fundraisingbox.com 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://secure.fundraisingbox.com https://www.google.com https://www.gstatic.com; font-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline'; frame-src https://www.youtube.com https://secure.fundraisingbox.com https://www.google.com; connect-src 'self';
strict-transport-security
max-age=31536000; includeSubDomains

Links to (11)

Linked from (4)