casanovafoto.com
casanovafoto.com
HTML metadata
Technology
- Server
- nginx
- CMS
- Gatsby
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (7)
- casanovafoto.b-cdn.net×131
- t4.my-probance.one×2
- assets.motive.co×1
- static.photoslurp.com×1
- widgets.trustedshops.com×1
- www.facebook.com×1
- www.googletagmanager.com×1
Social
Contact
- Address
- Ronda Universitat, 35, 08007, Barcelona, Barcelona, España
Registration
- Registrar
- Arsys Internet, S.L. dba NICLINE.COM
- Created
- 2001-01-12
- Expires
- 2027-01-12 237 days left
- Updated
- 2026-01-13
- Name servers
-
- dns3.servidoresdns.net
- dns4.servidoresdns.net
DNS records live
- NS
-
- dns3.servidoresdns.net
- dns4.servidoresdns.net
- MX
-
- 10 casanovafoto-com.mail.protection.outlook.com
- TXT
-
Show 4 TXT records
brevo-code:e397d95572fa9627cb30d37ba9df77a8asv=e7ff3b526dab3166653f2344222b7926_globalsign-domain-verification=m1_1Pff3rf6e_3zHuVUkPyXjYEE6XGomttEbQUGp2IMS=ms51410163
Email authentication strong
- SPF
-
v=spf1 ip4:90.160.57.122 ip4:151.101.1.124 include:spf.protection.outlook.com include:_spf.jupiter.salesmanago.pl -allstrict (-all) - DMARC
-
v=DMARC1; p=reject; rua=mailto:ipm4ihf@ar.glockapps.com; ruf=mailto:ipm4ihf@fr.glockapps.com; adkim=s; aspf=s; fo=1; pct=100;policy: reject (enforced) - DKIM
-
Show 5 DKIM selectors
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQD5byfGDw+4W3J9xrFldp4DHE7ZN7Z9xz9r0/+576jMCG9Q8Phka5x8+kBufXsX4GgtHuCyZqc+yBtPIXdwe3… - k1:
k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo… - mail:
k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z… - s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+NYrJ1NDsEHql0QY+UddlG6PSBEQ/qQQh6aKQOrXJDCav22doRfL76nRviy4tNXZa86tiGZtEi5hmBavs… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusK2fk2ZocCPNtuRGXrd2Qzf+5u/n87urCYAwx2mThY4zxExvFPTkGRHiRNKmafcLB7uHU70PPpt7CVlob…
selectors probed - selector1:
Certificate (current)
R13
Expires in 59 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; style-src 'self' https://*.cloudflare.com https://*.b-cdn.net https://*.etrusted.com https://*.trustedshops.com https://*.bootstrapcdn.com https://*.aplazame.com https://*.doofinder.com https://*.doubleclick.net https://*.ealyx.com https://*.facebook.com https://*.fontawesome.com https://*.googleapis.com https://*.googlesyndication.com https://*.googletagmanager.com https://*.gstatic.com https://*.langshop.io https://*.multisafepay.com https://*.jsdelivr.net https://*.googleapis.com https://*.bootstrapcdn.com https://*.multisafepay.com https://*.photoslurp.com 'unsafe-inline'; style-src-elem 'self' https://*.casanovafoto.com https://*.etrusted.com https://*.trustedshops.com https://*.cloudflare.com https://*.cetelem.es https://*.aplazame.com https://*.b-cdn.net https://*.bootstrapcdn.com https://*.doofinder.com https://*.ealyx.com https://*.googleapis.com https://*.jsdelivr.net https://*.multisafepay.com https://*.photoslurp.com 'unsafe-inline'; script-src blob: 'se- strict-transport-security
max-age=31536000