banf-holz.de

.de crawl

First seen 2026-04-17 · Last seen 2026-05-08 · ok HTTP/1.1 200 761 ms crawled 2026-05-12

DE · 217.160.0.120 · AS8560 IONOS SE

Reputation 94/100 dmarc monitor-only

sector other type homepage

HTML metadata

Title: Banf-Holz
Language: de

Technology

Server: Apache
CMS: Gatsby

Social widgets

YouTube Embed

Third-party hosts loaded (2)

www.youtube.com×2
static.my-eshop.info×1

Social

Registration

Updated

2025-07-17

Name servers

ns1046.ui-dns.com.
ns1047.ui-dns.de.
ns1097.ui-dns.biz.
ns1107.ui-dns.org.

DNS records live

NS

ns1046.ui-dns.com
ns1047.ui-dns.de
ns1097.ui-dns.biz
ns1107.ui-dns.org

MX

10 mx00.ionos.de
10 mx01.ionos.de

Email authentication partial

SPF: v=spf1 include:_spf-eu.ionos.com ~all
softfail (~all)
DMARC: v=DMARC1; p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-12-01 to 2026-12-16

Expires in 209 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://banf-holz.de/

present

content-security-policy
x-frame-options
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: script-src 'strict-dynamic' 'nonce-MmNmMmJkOWMtYzk5MS00Y2JlLWI1ZGQtNWIwYTI3NGJhNTc5' 'unsafe-inline' https: http:;object-src 'none';base-uri 'none';report-uri /api/v2/report-violation

Links to (2)

facebook.com×2
instagram.com×2

Linked from (1)

banf-werbung.de×2