carolus-thermen.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 936 ms crawled 2026-05-15

DE · 185.243.233.14 · AS34953 RelAix Networks GmbH

Reputation 95/100 weak security headers

Classifying

HTML metadata

Description

Carolus Thermen Bad Aachen - Thermalbad, Saunawelt, Spa und Kulinarik

Language

Generator

WordPress 6.9.4

Canonical

https://carolus-thermen.de/

Translations

Technology

Server: nginx
CMS: WordPress

Analytics

Google Tag Manager

Social widgets

YouTube Embed

Third-party hosts loaded (4)

cdn.eye-able.com×2
www.facebook.com×1
www.googletagmanager.com×1
www.youtube.com×1

Social

Registration

Updated

2025-07-01

Name servers

a.ns14.net.
b.ns14.net.
c.ns14.net.
d.ns14.net.

DNS records live

NS

a.ns14.net
b.ns14.net
c.ns14.net
d.ns14.net

MX

10 carolusthermen-de01i.mail.protection.outlook.com

TXT

MS=ms91528804

Email authentication strong

SPF

v=spf1 mx a ip4:213.196.237.114 ip4:185.243.232.53 ip4:94.130.132.98 ip4:212.27.79.46 ip4:79.140.185.101 include:spf.protection.outlook.com include:spf.eu.exclaimer.net include:spf.crsend.com include:spf-c.protection.bauer-kirch.de a:postfix.cisbox.com a:postfix2.cisbox.com a:owa.carolus-thermen.de -all

strict (-all)

DMARC

v=DMARC1;p=reject;sp=quarantine;pct=100;rua=mailto:dmarc@carolus-thermen.de;ruf=mailto:dmarc@carolus-thermen.de;aspf=s;adkim=s;

policy: reject (enforced) · sp=quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyDxggggB53om6HfwoPF5d4y92LPsm45deOYaGsJ63sBPW3qV9PiyaIXf10EguIAwvT1PXCKtJtnK8I…

selectors probed

Certificate (current)

R13

from 2026-03-17 to 2026-06-15

Expires in 26 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://carolus-thermen.de/

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy