b-and-s.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-16 · ok HTTP/1.1 200 15749 ms crawled 2026-05-13

FR · 188.165.41.129 · AS16276 OVH SAS

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

B&S instruments – German craftsmanship in brass instruments

Description

Explore B&S instruments: trumpets, cornets, flugelhorns, trombones, tenor and baritonehorns, tubas. Crafted with German expertise, our instruments combine tradition and modern technology. Perfect for musicians of all levels, discover our range and find the instrument that inspires you.

Language

Canonical

https://eu.b-and-s.com/bs_FI_en/

Translations

en
en-ad
en-al
en-am
en-az
en-ba
en-be
en-bg
en-by
en-ch
en-cy
en-cz
en-dk
en-ee
en-es
en-fi
en-fr
en-gb
en-ge
en-gr
en-hr
en-hu
en-ie
en-is
en-it
en-kg
en-kz
en-lt
en-lu
en-lv
en-md
en-me
en-mk
en-mn
en-mt
en-nl
en-no
en-pl
en-pt
en-ro
en-rs
en-se
en-si
en-sk
en-tj
en-tm
en-ua
en-uz
fr
fr-ad
fr-be
fr-ch
fr-fr
fr-lu

Technology

Server: Apache
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Contact

Phone

+ 33 (0) 1 30 98 51 30

Address

Rue du Sentier 75002

Registration

Registrar

Gandi SAS

Created

2001-07-15

Expires

2026-07-15 56 days left

Updated

2025-07-01

Name servers

ns-189-a.gandi.net
ns-40-b.gandi.net
ns-92-c.gandi.net

DNS records live

NS

ns-189-a.gandi.net
ns-40-b.gandi.net
ns-92-c.gandi.net

MX

10 spool.mail.gandi.net
50 fb.mail.gandi.net

TXT

brevo-code:bc042c6b268163a915391db8f3cdff43
google-site-verification=p7dXCXlCC0yn1ODqy6jQNA3WLGS6Nowz0I8SKn-F8Q8

Email authentication weak

SPF

not published

DMARC

v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com

policy: none (monitoring only)

DKIM

mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R12

from 2026-04-18 to 2026-07-17

Expires in 58 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://eu.b-and-s.com/bs_FI_en/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: font-src https://fonts.gstatic.com *.gstatic.com *.fontawesome.com https://www.google.com https://www.gstatic.com https://fonts.bunny.net *.alothemes.com *.magepow.com use.typekit.net data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com secure-test.dalenys.com secure-magenta.dalenys.com secure-magenta1.dalenys.com secure-magenta2.dalenys.com checkout.stripe.com 'self' 'unsafe-inline'; frame-ancestors self www.google.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com player.vimeo.com https://www.google.com/recaptcha/ www.google.com www.gstatic.com apis.google.com static.addtoany.com
strict-transport-security: max-age=31536000