indexo.dev

centrumbarrandov.cz

.cz crawl

First seen 2026-06-03 · Last seen 2026-06-03 · ok HTTP/1.1 200 633 ms crawled 2026-06-03

DE · 49.13.40.93 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Římskokatolická farnost u kostela sv. Filipa a Jakuba Praha-Hlubočepy

Technology

Server
nginx
jQuery
1.11.0 known XSS (<3.5)
Stack
PHP
Fonts
  • Font Awesome
  • Google Fonts
Third-party hosts loaded (9)
  • www.agendafarnosti.cz×14
  • o1.agendafarnosti.cz×12
  • agendafarnosti.cz×9
  • fonts.googleapis.com×2
  • use.fontawesome.com×2
  • cirkevnistatistiky.cz×1
  • forms.agendafarnosti.cz×1
  • translate.google.com×1
  • www.facebook.com×1

Social

Contact

Email
Phone

Registration

Registrar
REG-MEDIA4WEB
Created
2010-12-21
Expires
2029-12-20 1294 days left
Updated
2022-04-04
Name servers
  • cattani.netservis.cz
  • doyle.netservis.cz

DNS records live

NS
  • cattani.netservis.cz
  • doyle.netservis.cz
MX
  • 10 doyle.netservis.cz
  • 20 cattani.netservis.cz

Email authentication weak

SPF
v=spf1 mx a include:spf.nethost.cz -all
strict (-all)
DMARC
not published
DKIM
  • default: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDkqiSTGcYycHoqJ1JT3OZWUZqcnCcQut5HSX6MpAOBnNp2e7YPs38A4iTt3lS/AZvCfnMyiaZdpRCe1foZ7pgVnzOcDoj…
selectors probed

Certificate (current)

E8
from 2026-04-26 to 2026-07-25
Expires in 51 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://centrumbarrandov.cz/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
Header values
permissions-policy
unload=(self "https://www.facebook.com" "https://web.facebook.com" "https://staticxx.facebook.com" "https://static.xx.fbcdn.net")
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' https://booking.previo.app https://*.agendafarnosti.cz https://*.agendafarnosti.sk https://*.gemeindeagenda.at https://donator.cz https://*.fontawesome.com https://cirkevnistatistiky.cz https://js.stripe.com https://*.vaticannews.va https://*.jsdelivr.net https://*.cloudflare.com https://*.google.com https://*.googletagmanager.com https://*.google-analytics.com https://*.googleapis.com https://*.facebook.net https://*.facebook.com https://*.cloudflareinsights.com; frame-ancestors 'self' https://*.agendafarnosti.cz https://agendafarnosti.cz https://*.agendafarnosti.sk https://agendafarnosti.sk https://*.gemeindeagenda.at https://gemeindeagenda.at https://cirkevnistatistiky.cz;
strict-transport-security
max-age=63072000; includeSubDomains; preload, max-age=31536000
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (4)

Linked from (1)