blau.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 4264 ms crawled 2026-05-18

US · 141.101.90.39 · AS13335 Cloudflare, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Blau | Günstiger Mobilfunk, Handys & Prepaid mit Allnet-Flat & 5G
Description: Günstiger telefonieren, surfen, simsen – ganz einfach mit Blau als Mobilfunkanbieter. ✓ Handys ✓ Laufzeit-Tarife ✓ Prepaid-Karten ᐅ Angebote nutzen
Language: de
Canonical: https://www.blau.de/

Open Graph

title: Blau | Günstiger Mobilfunk, Handys & Prepaid mit Allnet-Flat & 5G
description: Günstiger telefonieren, surfen, simsen – ganz einfach mit Blau als Mobilfunkanbieter. ✓ Handys ✓ Laufzeit-Tarife ✓ Prepaid-Karten ᐅ Angebote nutzen

Technology

CDN: Cloudflare
CMS: Gatsby

Cookie consent

Usercentrics

Third-party hosts loaded (9)

static2-blau.o9.de×28
static-blau.o9.de×10
library.telefonica.de×7
app.eu.usercentrics.eu×2
api-v4.trbo.com×1
config.eu.usercentrics.eu×1
static-v2.trbo.com×1
static.o9.de×1
static2.o9.de×1

Contact

Phone

08004040410

Address

Georg-Brauchle-Ring 50, 80992, München, Bayern, DE

Registration

Updated

2024-06-07

Name servers

anycast.regdns1.de.
anycast.regdns2.net.

DNS records live

NS

anycast.regdns1.de
anycast.regdns2.net

MX

10 mailserver1.viaginterkom.de

TXT

Show 5 TXT records

google-site-verification=xCu5hV2aLPCbEviZSqsHYfy1B676w_UUzGvqJEQk_08
google-site-verification=7ZDGs63vaE7yemWciLcyS6TXixCaWiRv_PxkTr1Bok0
facebook-domain-verification=gfyuzp264ig7dfc1q01kr64qro0m61
google-site-verification=WCqVEk5rLbnhV3MoVdMr5VrLkMVDm4BvNnQxOOy7v3I
google-site-verification=x6zlW0IT5_UAouJoWQM_tAkAwS9MQsfJC2ry70NeaOc

Email authentication partial

SPF

v=spf1 mx include:spf.mail.telefonica.de ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@report.mail.telefonica.de

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFx12InX/uG8WFumebbO7wfV6M9jWj+qV3sGJvriAeOAousHvG85lPcY0pKViSIchbFH4qVShTGe/+LckJ…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+ihAT18/f6G21PKz5w8BlHeVTXja9jtKOlaBrkiVWuyrbUc4DynayguszDXPrBzEy7CQNuF1qadZh/XWI…

selectors probed

Certificate (current)

WE1

from 2026-03-26 to 2026-06-25

Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.blau.de/

present

strict-transport-security
content-security-policy
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: object-src 'none'; child-src blob: *; worker-src blob: *; frame-ancestors 'self' https://*.o2.de https://*.o2.com https://*.o2online.de https://*.blau.de; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.tiktok.com *.o2.com *.o2.de *.spatialbuzz.com *.usercentrics.eu *.baqend.com *.o2online.de *.telefonica.de *.o9.de *.googletagmanager.com *.trbo.com *.google-analytics.com *.kampyle.com *.adoberesources.net *.matelso.de *.contentsquare.net *.contentsquare.com bat.bing.com *.nowinteract.com *.demoup.com *.auracognitive.com *.adtelligence.de *.aklamio.com *.promisejs.org *.usabilla.com *.jsdelivr.net *.cloudflare.com *.abtasty.com *.blob.core.windows.net *.blau.o9.de *.blau.de *.ad4m.at track.adform.net www.facebook.com *.doubleclick.net a.twiago.com www.youtube.com o2-music-cms-a.preprod.ava-digi.de www.google.co.in dpm.demdex.net embeddable-widgets.insided.com www.google-analytics.com imagesrv.adition.com *.google.com dsum-sec.casalemedia.com rtb-cs
strict-transport-security: max-age=15552000

Links to (2)

o9.de×4
telefonica.de×4

Linked from (2)

telefonica.de×4
lauter.de×2