biooekonomierat.de
biooekonomierat.de
HTML metadata
Technology
- Server
- nginx
Third-party hosts loaded (1)
- consent.cookiebot.eu×1
Social
Registration
- Updated
- 2021-06-29
- Name servers
-
- ns1-ipv6.net-server.de.
- ns1.net-server.de.
- ns2-ipv6.net-server.de.
- ns2.net-server.de.
DNS records live
- NS
-
- ns1-ipv6.net-server.de
- ns1.net-server.de
- ns2-ipv6.net-server.de
- ns2.net-server.de
- MX
-
- 10 mx01.hornetsecurity.com
- 20 mx02.hornetsecurity.com
- 30 mx03.hornetsecurity.com
- 40 mx04.hornetsecurity.com
Email authentication strong
- SPF
-
v=spf1 include:spf.hornetsecurity.com ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=quarantine;pct=100policy: quarantine - DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 135 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- weak content type protection
- missing Permissions Policy
Header values
- referrer-policy
strict-origin- x-frame-options
sameorigin;- x-content-type-options
nosniff;- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' *.cookiebot.eu *.vditz.com *.googleapis.com *.youtube.com *.vimeo.com; style-src 'self' 'unsafe-inline'; img-src data: 'self' *.usercentrics.eu *.fona.de *.matpro.de *.ytimg.com *.vimeocdn.com; font-src 'self'; connect-src 'self' *.cookiebot.com *.cookiebot.eu stats.vditz.com; base-uri 'self'; media-src blob: 'self' *.youtube.com *.vimeo.com *.bmbf.de; frame-src 'self' *.webedition.org *.streambuzzer.com *.sli.do *.biooekonomierat.de *.cookiebot.eu *.vditz.com *.pt-dlr.de *.google.com *.youtube.com *.youtube-nocookie.com *.vimeo.com *.bmbf.de *.emailsys1a.net; object-src 'none'; frame-ancestors 'self';- strict-transport-security
max-age=300; includeSubDomains;, max-age=15768000; includeSubDomains