indexo.dev

bike-o-rado.de

.de crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 212 ms crawled 2026-06-02

AU · 103.169.142.0 · AS209242 Cloudflare London, LLC

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Bikeorado
Language
de-DE

Open Graph

title
Bikeorado

Technology

CDN
Cloudflare

Registration

Updated
2015-09-01
Name servers
  • ns1.your-server.de.
  • ns3.second-ns.de.
  • ns.second-ns.com.

DNS records live

NS
  • ns.second-ns.com
  • ns1.your-server.de
  • ns3.second-ns.de
MX
  • 10 bikeorado-de01f.mail.protection.outlook.com
TXT
  • canva-domain-verify=43f6908e-32c4-44b8-b384-b8e3b1422e2b

Email authentication weak

SPF
v=spf1 ip4:212.114.206.163 include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyLBGo0MrX8KunnupoWRS8xsa03Z6vUkkARPcL1SfRGnG4CWqlh5wbdt7bUp2eHCqY8wfcF95InMpZj…
selectors probed

Certificate (current)

WR1
from 2026-04-06 to 2026-07-05
Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://bike-o-rado.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
frame-ancestors 'self' *.canva.com canva.com; report-uri https://csp.canva.com/_cspreport?app=websites; base-uri 'self'; object-src 'none'; script-src 'report-sample' 'strict-dynamic' 'nonce-27f1d8a9-c5c0-4380-a77c-da50faf0d0d0' 'wasm-unsafe-eval' https://www.google.com/recaptcha/api.js;
strict-transport-security
max-age=31536000

Linked from (1)