caaf.it

HTML metadata

Technology

Server

nginx

CMS

WordPress 6.1.1

PHP

7.4.33 end of life

jQuery

3.6.1

Cookie consent

• Iubenda

Fonts

• Google Fonts

Social

• facebook
• instagram

Contact

Phone

• +390415046111

DNS records live

NS

• ns1.register.it
• ns2.register.it

MX

• 5 matika.esvacloud.com

TXT

• 0uJc3QH4dseEvVEK302EYxALOxZDsYPniSulMXjqX0QWA+lVy4tannt4XBIykTJBfpY82WUj5lFVSuEbLp/kwA==
• sanhrm3m44q2un9fe4kgqa438t
• Tzx9+8zEbUagaCF01Ng+YT/mKkyUfew8t0wAxmcQyfrZm1kUaJg0YiCro0mF+GEh5lOmJViAhRPlFq4YAvPayA==

Verified for

• Google
• Microsoft 365

Email authentication partial

SPF

v=spf1 ip4:217.118.3.192/26 ip4:54.229.2.165 ip4:52.30.130.201 ip4:52.17.45.98 ip4:52.16.190.81 include:spf.protection.outlook.com include:spf.emailchef.com include:servers.mcsv.net a:matika.esvacloud.com include:spf.sintel.net -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.email

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC57S3LFbGlWL6a6hqPN9y0wnkmXHmepGx0TEcnXix8Z8qedA5z+UAaQwUFPLvpgB1QN/CijWxTggX2+sfTcY…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://caaf.it/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (6)

• sincgil.it×1
• scintille.net×1
• instagram.com×1
• google.com×1
• facebook.com×1
• apple.com×1

Linked from (3)

• cgil.veneto.it×1
• spibelluno.it×1
• cgilbelluno.it×1