bsprudnik.pl
bsprudnik.pl
HTML metadata
Technology
- Server
- nginx
- CMS
- Joomla
Social
DNS records live
- NS
-
- dns1.tld.pl
- dns2.tld.pl
- dns3.tld.pl
- MX
-
- 10 poczta.it-bps.com.pl
- TXT
-
eifzaputEM8sBloaBxAj7PtVQzsgCsLR
Email authentication strong
- SPF
-
v=spf1 +a +mx -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:monitoring@bsprudnik.pl; pct=100;policy: quarantine · sp=quarantine - DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 139 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=self- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://maps.googleapis.com https://cdn.jsdelivr.net https://code.jquery.com https://unpkg.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com; img-src 'self' data: https://www.google.com https://maps.gstatic.com https://maps.googleapis.com; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://www.google-analytics.com https://www.googleapis.com https://maps.googleapis.com https://maps.gstatic.com; frame-src 'self' https://maps.google.com https://bsi.gs-net.pl; object-src 'none'; base-uri 'self'; form-action 'self'; upgrade-insecure-requests; frame-ancestors 'self'- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin
Links to (7)
- youtube.com×1
- verdit.pl×1
- sozbps.pl×1
- linkedin.com×1
- kartosfera.pl×1
- facebook.com×1
- bankbps.pl×1