bspa.at

.at crawl

First seen 2026-05-20 · Last seen 2026-05-30 · ok HTTP/1.1 200 1458 ms crawled 2026-05-27

DE · 192.46.239.83 · AS63949 Akamai Connected Cloud

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title: Österreich - Bundessportakademie
Language: de

Technology

Server: Apache
PHP: 7.0.33 end of life

Social widgets

YouTube Embed

Third-party hosts loaded (1)

www.youtube-nocookie.com×2

DNS records live

NS

ns11.govix.at
ns5.univie.ac.at

MX

0 bspa-at.mail.protection.outlook.com

Email authentication partial

SPF

v=spf1 ip4:192.46.239.83 include:spf.protection.outlook.com include:spf.emailsignatures365.com -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:d2731cf8@mxtoolbox.dmarc-report.com,mailto:mail.ueberpruefung@bspa.at; ruf=mailto:d2731cf8@forensics.dmarc-report.com,mailto:mail.ueberpruefung@bspa.at; fo=1

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC2z9YxSeJB4Avycu7BqXUtcFmd5Rr63SZ9YxFfaOPn1w1A10a01uAc/5agEiBfpYWep6EqGevzB8ZFlvcW2o…

selectors probed

Certificate (current)

R13

from 2026-04-08 to 2026-07-07

Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.bspa.at/

present

x-content-type-options

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff

Links to (2)

nada.at×1
sportpsychologie.at×1