indexo.dev

baukultur-bw.de

.de crawl

First seen 2026-04-16 · Last seen 2026-05-17 · ok HTTP/1.1 200 1721 ms crawled 2026-05-11

DE · 83.246.49.34 · AS24679 kyberio GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Baukultur BW: Startseite
Language
de-DE
Generator
TYPO3 CMS
Canonical
https://www.baukultur-bw.de/startseite/

Technology

Server
Apache

Contact

Email
Phone

Registration

Updated
2024-12-09
Name servers
  • auth1.artfiles.de.
  • auth2.artfiles.de.

DNS records live

NS
  • auth1.artfiles.de
  • auth2.artfiles.de
MX
  • 10 mailin.dcpserver.de
  • 20 mailin3.dcpserver.de

Email authentication partial

SPF
v=spf1 a include:spf.dcpserver.de -all
strict (-all)
DMARC
v=DMARC1; p=none; rua=mailto:no-reply@baukultur-bw.de;
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-04-05 to 2026-07-04
Expires in 44 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.baukultur-bw.de/startseite/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' https://pollunit.com/ https://player.vimeo.com/ https://vimeo.com/ https://www.youtube.com/ https://youtu.be/ https://mlw.form.cloud/ data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://pollunit.com/ https://mlw.form.cloud/ https://www.youtube.com/ https://s.ytimg.com/ https://vjs.zencdn.net/; img-src * data:; style-src 'unsafe-inline' *; frame-ancestors 'self'; frame-src 'self' https://pollunit.com/ https://mlw.form.cloud/ https://player.vimeo.com/ https://vimeo.com/event/ https://www.youtube-nocookie.com/ https://www.youtube.com/ https://app.sli.do/ https://vjs.zencdn.net/; font-src 'self' data:; worker-src blob:; connect-src 'self' https://sgx.geodatenzentrum.de/;
strict-transport-security
max-age=31536000; includeSubDomains

Links to (1)

Linked from (5)