cm-cinfaes.pt

HTML metadata

Technology

Server

Apache

CMS

Joomla

PHP

8.3.31 security-only

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (2)

• fonts.googleapis.com×1
• www.googletagmanager.com×1

Social

• facebook
• youtube
• instagram

DNS records live

NS

• ns1.serverhost.pt
• ns2.serverhost.pt

MX

• 0 smtp.google.com

TXT

• 4tf553qzcxr905l3yldrtz552s69bnhm
• ethiack-verification=ee75e1734cb03b08766f8c2cd3cdc73333acf98f0094745de8188cd056b5fe42c0c9d2eeb8e1a87eebcfcf1ff8baa85fef7dc7cf42c078e26913d573dfea8c35

Verified for

• GlobalSign

Email authentication strong

SPF

v=spf1 ip4:94.46.177.28 +a +mx +include:_spf.google.com -all

strict (-all)

DMARC

v=DMARC1;p=quarantine;sp=none;adkim=r;aspf=r;pct=100;fo=0;rf=afrf;ri=86400

policy: quarantine · sp=none

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW8ZoELYbK8dNzYz6RCPyuY9xz9XJ54kWB6ISJN7Ar3A80s45L9hB+I8/fki+T6pGxIkajLnb1/oj9…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://cm-cinfaes.pt/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• cross-origin-opener-policy

findings

• missing Permissions Policy

Links to (11)

• biblioled.gov.pt×1
• cimtamegaesousa.pt×1
• dolmen.pt×1
• edubox.pt×1
• facebook.com×1
• instagram.com×1
• livroreclamacoes.pt×1
• rotadoromanico.com×1
• visitcinfaes.pt×1
• webfarol.com×1
• youtube.com×1

Linked from (1)

• triave.pt×1