cybersphere.it
HTML metadata
Technology
- Server
- nginx
- CMS
- Next.js
Third-party hosts loaded (2)
- stats.intercom.it×1
- www.google.com×1
Social
Contact
- Phone
- Address
- Via Piantà 8, 28010, Vaprio d'Agogna, NO, IT
DNS records live
- NS
-
- adns1.intercom.it
- adns2.intercom.it
- adns3.intercom.it
- MX
-
- 100 a.smtp-in.intercom.it
- 100 b.smtp-in.intercom.it
- TXT
-
sophos-domain-verification=33ff6a82b50ddb461024b631daee18fa5b5f742csophos-domain-verification=b38a93ed1451d33eb5ff83d315f664127776dd7fae8352ebdad0c8aa35ffe294
- Verified for
-
Email authentication strong
- SPF
-
v=spf1 a mx ip4:195.72.195.34 include:intercom.it include:_spf.google.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; pct=100; rua=mailto:alert@cybersphere.it; ri=86400; aspf=r; adkim=r;policy: reject (enforced) - DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA OV R36
Expires in 264 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
DENY- x-content-type-options
nosniff- content-security-policy
default-src 'self' stats.intercom.it www.google.com www.gstatic.com fonts.gstatic.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' stats.intercom.it www.google.com www.gstatic.com; style-src 'self' 'unsafe-eval' 'unsafe-inline' www.gstatic.com; img-src 'self' blob: data: www.gstatic.com; font-src 'self' fonts.gstatic.com; form-action 'self'; object-src 'none'; base-uri 'self'; frame-ancestors 'none'; upgrade-insecure-requests- strict-transport-security
max-age=31536000; preload- cross-origin-opener-policy
same-origin- cross-origin-embedder-policy
credentialless- cross-origin-resource-policy
same-origin