benchmark.pl
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (3)
- i.wpimg.pl×125
- std.wpcdn.pl×9
- gofer.wpcdn.pl×4
Social
DNS records live
- NS
-
- ns1.wp.pl
- ns2.wp.pl
- MX
-
- 10 mx-gda.grupawp.pl
- 5 mx-waw.grupawp.pl
- Verified for
-
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 a a:mx.benchmark.pl include:_spf.grupawp.pl mx include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none;sp=none;rua=mailto:dmarc@grupawp.pl;ruf=mailto:dmarc@grupawp.pl;aspf=r;adkim=r;fo=1;policy: none (monitoring only) · sp=none - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA86cOCGKdh5RZSabzvekw7HeVPyQNd5SlTqJriId1RAEZm536PaIZyOWrOY3O3ZxPtekXATPMw1i+lM… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUpSJx4ff8ryebvwngY62h1OKqneyzAvNLiJcW9C57VuA3OpJ+GZXbQNDpVDPB2A5qpbYY3OSHsAy1…
selectors probed - selector1:
Certificate (current)
RapidSSL TLS RSA CA G1
Expires in 98 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- missing HSTS
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
report-uri /v1/csplog; block-all-mixed-content; frame-ancestors https://*.grupawp.pl https://*.kube.dev.dcwp.pl;
Links to (4)
- wp.pl×1
- twitter.com×1
- instagram.com×1
- facebook.com×1