bonarka.com.pl
bonarka.com.pl
HTML metadata
Technology
- Server
- nginx
- CMS
- Next.js
- JS framework
- Next.js
Social
DNS records live
- NS
-
- autumn.ns.cloudflare.com
- garrett.ns.cloudflare.com
- MX
-
- 0 bonarka-com-pl.mail.protection.outlook.com
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com ip4:77.95.237.2 ip4:77.95.237.95 +a +mx +ip4:79.133.207.100 -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:postmaster@bonarka.com.pl,mailto:dmarc_agg@vali.email; ruf=mailto:postmaster@bonarka.com.pl; fo=0; adkim=r; aspf=r; pct=100; rf=afrf; ri=86400; sp=none ;policy: quarantine · sp=none - DKIM
-
- default:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3STxR79Dcxiz1pxhy3GH8cIcV5XEP/WYE6y8nqNoXAkQqm8mdudc3o/LOzit5N/J20BDj1JLr4oqp… - selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIVv62fqHEDMYikhZ21rCbKoRVb7aKFuzJyNhsRC7y6gGOk8OrAj6m5y215M5Hq5Vx+q3nd2MH1xcI…
selectors probed - default:
Certificate (current)
R12
Expires in 64 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline' https://cms.bonarka.com.pl https: data:; frame-ancestors 'self'- strict-transport-security
max-age=63072000; includeSubDomains; preload