indexo.dev

coba-osnabrueck.de

.de crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 4819 ms crawled 2026-05-15

DE · 212.63.131.130 · AS8741 ratiokontakt GmbH

Reputation 100/100

Classifying

HTML metadata

Title
COBA - Alles unter einem Dach
Description
Die COBA ist eine der führenden Handels-Kooperationen der Dachbranche. Rund 60 Standorte bieten Profis Dachmaterial, Werkzeuge & Services aus einer Hand.
Language
de
Canonical
https://www.coba-osnabrueck.de/

Open Graph

url
https://www.coba-osnabrueck.de/
title
COBA - Alles unter einem Dach
description
Die COBA ist eine der führenden Handels-Kooperationen der Dachbranche. Rund 60 Standorte bieten Profis Dachmaterial, Werkzeuge & Services aus einer Hand.

Technology

Server
nginx
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Contact

Address
Kiebitzheide 44, 49084, Osnabrück, Niedersachsen, de

Registration

Updated
2007-12-27
Name servers
  • ns3.nameserver.de.
  • ns4.nameserver.de.

DNS records live

NS
  • ns3.nameserver.de
  • ns4.nameserver.de
MX
  • 10 mx01.hornetsecurity.com
  • 20 mx02.hornetsecurity.com
  • 30 mx03.hornetsecurity.com
  • 40 mx04.hornetsecurity.com
Verified for
  • Microsoft 365

Email authentication strong

SPF
v=spf1 include:spf.hornetsecurity.com include:spf.crsend.com ~all
softfail (~all)
DMARC
v=DMARC1;p=quarantine;pct=100;rua=mailto:dmarc@coba-osnabrueck.de
policy: quarantine
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-02 to 2026-07-01
Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.coba-osnabrueck.de/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
same-origin
permissions-policy
camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), usb=(), document-domain=(), fullscreen=(self), payment=()
x-content-type-options
nosniff
content-security-policy
default-src https: data: 'self' *.youtube.com *.youtube-nocookie.com .openstreetmap.org *.cookiefirst.com *.googletagmanager.com *.google-analytics.com *amazonaws.com; img-src https: data: 'self' .openstreetmap.org *.cookiefirst.com *.googletagmanager.com *amazonaws.com; media-src https: data: 'self' *.cookiefirst.com *amazonaws.com; font-src https: data: 'self' *.cookiefirst.com *amazonaws.com; script-src https: 'self' 'unsafe-inline' *.cookiefirst.com *.googletagmanager.com *.google-analytics.com *amazonaws.com; style-src 'self' 'unsafe-inline' *.cookiefirst.com *amazonaws.com; form-action 'self'; frame-src https: data:; frame-ancestors 'none';
strict-transport-security
max-age=31536000; includeSubDomains

Links to (5)

Linked from (3)