bildung-ooe.gv.at
bildung-ooe.gv.at
HTML metadata
Contact
DNS records live
- NS
-
- ns1.ooe.gv.at
- ns11.govix.at
- ns2.ooe.gv.at
- ns5.univie.ac.at
- MX
-
- 10 lxli01-003.ooe.gv.at
- 10 lxli01-032.ooe.gv.at
- 10 lxli01-047.ooe.gv.at
- 20 lxli01-001.ooe.gv.at
- TXT
-
MS=C4C6E687393F5CA88701F81883BD469AF6E3C6A6
- Verified for
-
- Brevo
- HARICA
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 ip4:194.48.60.0/24 ip4:194.48.61.0/24 include:_spf.cna.at include:spf.brevo.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; sp=none; pct=100; adkim=r; aspf=r; rua=mailto:dmarc-reports@ooe.gv.at; ruf=mailto:dmarc-forensic@ooe.gv.at; fo=1policy: none (monitoring only) · sp=none - DKIM
-
- mail:
v=DKIM1;k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+ls…
selectors probed - mail:
Certificate (current)
E8
Expires in 84 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- weak content type protection
- missing Permissions Policy
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff, nosniff- content-security-policy
default-src 'none'; script-src 'self' connect.facebook.net graph.facebook.com 'unsafe-inline' 'unsafe-eval' https://s.ytimg.com https://www.youtube.com; connect-src 'self' *; img-src 'self' data: *.facebook.com *.youtube.com *.twimg.com *.twitter.com *; style-src 'self' 'unsafe-inline'; media-src 'self' *.youtube.com; font-src 'self'; object-src 'none'; frame-src 'self' *.bmlfuw.gv.at *.bmnt.gv.at https://*.youtube.com *.facebook.com https://*.umweltbundesamt.at https://*.laola1.tv https://*.europa.eu https://*.facebook.com- strict-transport-security
max-age=63072000