indexo.dev

bvl-group.de

.de crawl

First seen 2026-05-15 · Last seen 2026-05-31 · ok HTTP/1.1 200 6482 ms crawled 2026-05-20

DE · 194.0.208.97 · AS29686 Probe Networks

Reputation 94/100 dmarc monitor-only

sector manufacturing type homepage

HTML metadata

Title
Die Bernard van Lengerich-Gruppe | https://www.bvl-group.de/
Description
Die BvL-Unternehmensgruppe steht heute für innovative Technik mit höchsten Qualitätsansprüchen in den drei leistungsstarken Geschäftsbereichen Landmaschinentechnik, Oberflächentechnik und Elektrotechnik.
Language
de-de
Generator
TYPO3 CMS
Canonical
https://www.bvl-group.de/
Translations
  • de
  • en

Technology

Server
Apache

Contact

Email
Phone

Registration

Updated
2021-08-02
Name servers
  • nsa0.schlundtech.de.
  • nsb0.schlundtech.de.
  • nsc0.schlundtech.de.
  • nsd0.schlundtech.de.

DNS records live

NS
  • nsa0.schlundtech.de
  • nsb0.schlundtech.de
  • nsc0.schlundtech.de
  • nsd0.schlundtech.de
MX
  • 10 mx1-eu1.ppe-hosted.com
  • 20 mx2-eu1.ppe-hosted.com
TXT
  • ppe-97d81295716d0eb0ae735e1771621d6aff108274
  • ZA=sPDDAHJ5yH14DKA0TXVY+Q==
Verified for
  • Apple

Email authentication partial

SPF
v=spf1 a mx ip4:194.0.208.89 ip4:87.249.122.64/26 ip4:156.67.161.160/28 include:_spf-eu.ppe-hosted.com include:_spf.senders.scnem.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:dmarc@bvl-group.de; ruf=mailto:dmarc@bvl-group.de; fo=1
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-05-14 to 2026-08-12
Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.bvl-group.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(),fullscreen=(self), ambient-light-sensor=(), autoplay=(self), battery=(), camera=(self), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), clipboard-read=*, clipboard-write=*, gamepad=(), speaker-selection=(), conversion-measurement=(), focus-without-user-activation=(), hid=(), idle-detection=(), interest-cohort=(), serial=(), sync-script=(), xr-spatial-tracking=*, trust-token-redemption=()
x-content-type-options
nosniff
content-security-policy
default-src 'self';style-src 'self' 'unsafe-inline' https://fonts.googleapis.com ; img-src 'self' https://storage.vertexgo.com https://www.googletagmanager.com https://*.google-analytics.com https://maps.googleapis.com https://maps.gstatic.com/ data: blob:; object-src data: blob:; frame-src 'self' https://www.googletagmanager.com https://youtu.be *.youtube.com *.youtube-nocookie.com https://plugins.flockler.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.vertexgo.com https://storage.vertexgo.com https://www.googletagmanager.com http://www.google-analytics.com https://maps.googleapis.com https://plugins.flockler.com blob:; connect-src 'self' https://cdn.jsdelivr.net https://static.vertexgo.com https://api.vertexgo.com https://www.google.com https://storage.vertexgo.com/ https://*.google-analytics.com https://maps.googleapis.com blob:; font-src 'self' https://fonts.gstatic.com data:
strict-transport-security
max-age=31536000; includeSubdomains

Links to (3)

Linked from (3)