blackforest-still.de
HTML metadata
Technology
- Server
- Apache
Third-party hosts loaded (1)
- www.peterstaler.de×9
Social
Registration
- Updated
- 2024-11-29
- Name servers
-
- a.ns14.net.
- b.ns14.net.
- c.ns14.net.
- d.ns14.net.
DNS records live
- NS
-
- a.ns14.net
- b.ns14.net
- c.ns14.net
- d.ns14.net
- MX
-
- 10 de-smtp-inbound-1.mimecast.com
- 10 de-smtp-inbound-2.mimecast.com
- TXT
-
MS=ms218024880ed1fe018ab59afe0d2605444f8eb605df511907b2
Email authentication weak
- SPF
-
v=spf1 a mx a:mail.peterstaler.de include:spf.protection.outlook.com include:spf.hornetsecurity.com include:spf-de.emailsignatures365.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 70 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src data: blob: 'self' 'unsafe-inline' 'unsafe-eval' service.mtcaptcha.com service2.mtcaptcha.com www.peterstaler.de www.blackforest-still.de www.youtube.com developers.google.com maps.googleapis.com; style-src 'self' 'unsafe-inline' fast.fonts.net fonts.googleapis.com; img-src data: 'self' www.peterstaler.de www.blackforest-still.de maps.gstatic.com maps.googleapis.com i.ytimg.com; frame-src 'self' service.mtcaptcha.com service2.mtcaptcha.com www.youtube-nocookie.com; frame-ancestors 'self' www.peterstaler.de www.blackforest-still.de; connect-src 'self' www.peterstaler.de www.blackforest-still.de maps.googleapis.com; font-src 'self' fonts.gstatic.com data: fast.fonts.net; media-src 'self' t3:- strict-transport-security
max-age=31536000; includeSubDomains; preload