chorverband-der-pfalz.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 3156 ms crawled 2026-05-16

DE · 81.169.145.143 · AS6724 Strato GmbH

Reputation 100/100

Classifying

HTML metadata

Title

Startseite - Chorverband der Pfalz e.V.

Language

Generator

WordPress 6.9.4

Canonical

https://www.chorverband-der-pfalz.de/

Feeds

Technology

Server: Apache
CMS: WordPress

Third-party hosts loaded (1)

gmpg.org×1

Contact

Email

Phone

Registration

Updated

2007-05-25

Name servers

docks11.rzone.de.
shades14.rzone.de.

DNS records live

NS

docks11.rzone.de
shades14.rzone.de

MX

5 smtpin.rzone.de

Email authentication strong

SPF: v=spf1 mx ~all
softfail (~all)
DMARC: v=DMARC1;p=reject;
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2026-04-23 to 2026-11-08

Expires in 171 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.chorverband-der-pfalz.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: SAMEORIGIN
permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests; base-uri 'self'; form-action 'self'; default-src 'self'; media-src 'self'; frame-src https: 'self'; frame-ancestors 'self'; object-src 'none'; img-src 'self' *.gravatar.com *.elementor.com data: 'self' blob: 'self' ps.w.org www.chordates.de chordates.de; worker-src 'self' blob: 'self'; child-src 'self' blob: 'self'; connect-src 'self' matomo.px-cloud.de *.wpml.org blob: 'self'; script-src 'self' matomo.px-cloud.de *.wpml.org 'unsafe-inline' 'unsafe-eval' ; style-src 'self' 'unsafe-inline' *.wpml.org fonts.googleapis.com fonts.gstatic.com; font-src 'self' data: 'self' fonts.googleapis.com fonts.gstatic.com; script-src-elem 'self' 'unsafe-inline' matomo.px-cloud.de *.wpml.org *.youtube.com *.vimeo.com cdnjs.cloudflare.com/ajax/libs/;, upgrade-insecure-requests; base-uri 'self'; form-action 'self'; default-src 'self';
strict-transport-security: max-age=63072000

Links to (1)

overso.org×2

Linked from (1)

deutsche-chorjugend.de×2