indexo.dev

bancadicaraglio.it

.it crawl

First seen 2026-05-23 · Last seen 2026-05-31 · ok HTTP/1.1 200 2085 ms crawled 2026-05-28

NL · 52.166.9.11 · AS8075 Microsoft Corporation

Reputation 100/100

Classifying

HTML metadata

Title
Privati - Banca di Caraglio
Description
Scopri i servizi e i prodotti bancari pensati per te e la tua famiglia
Language
it

Open Graph

url
https://www.bancadicaraglio.it/privati/
title
Privati

Technology

Server
nginx
Social widgets
  • Vimeo Embed

Third-party hosts loaded (3)

  • cdn.fonts.net×3
  • player.vimeo.com×1
  • www.youtube.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.register.it
  • ns2.register.it
MX
  • 10 mxa-0054ee01.gslb.pphosted.com
  • 10 mxb-0054ee01.gslb.pphosted.com

Email authentication strong

SPF
v=spf1 include:_spf.bancadicaraglio_it._d.easydmarc.pro -all
strict (-all)
DMARC
v=DMARC1;p=reject;pct=100;rua=mailto:1f0190178c@rua.easydmarc.eu;ri=86400;
policy: reject (enforced)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8V6oCNRl0o+3uQcU+0e13Eh9Fkoaw7hpQICM3YmaWD3IJLiPSN3J6CUa4zTKkef7vp4Qhom3Zd+HjQ…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-10-29 to 2026-11-13
Expires in 165 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bancadicaraglio.it/privati/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' 'unsafe-inline' bancacentroemilia.zendesk.com challenges.cloudflare.com connect.facebook.net csp.withgoogle.com ekr.zdassets.com fresnel-events.vimeocdn.com jnn-pa.googleapis.com maps.googleapis.com play.google.com player-telemetry.vimeo.com vimeo.com webtools.europa.eu www.google.com yy2iyrkool.execute-api.eu-west-1.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.cassacentrale.it cdn.fonts.net analytics.tiktok.com widget-mediator.zopim.com geo.cookie-script.com www.googletagmanager.com pagead2.googlesyndication.com assets.yumpu.com audiovisual.ec.europa.eu bam.nr-data.net ccapi.bancadibologna.it cdn.cookie-script.com cdn.jsdelivr.net cdnjs.cloudflare.com challenges.cloudflare.com code.jquery.com connect.facebook.net e.issuu.com eu.cookie-script.com europa.eu f.vimeocdn.com googleads.g.doubleclick.net imagazine.advertserve.com js-agent.newrelic.com maps.googleapis.com player.vimeo.com player.yumpu.news players.yumpu.com report.cookie-script.com rul
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (8)

Linked from (3)