dauphin-home.de
HTML metadata
Technology
Third-party hosts loaded (2)
- kit.fontawesome.com×1
- p.typekit.net×1
Social
Registration
- Updated
- 2017-05-04
- Name servers
-
- dns01.nroute.de.
- dns02.nroute.de.
DNS records live
- NS
-
- dns01.nroute.de
- dns02.nroute.de
- MX
-
- 10 mf-lbn1.bisping.de
Email authentication weak
- SPF
-
v=spf1 ip4:62.91.19.112/28 mx a ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 14 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- weak content type protection
- missing Permissions Policy
Header values
- referrer-policy
strict-origin- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff, nosniff- content-security-policy
base-uri 'self'; default-src 'none'; font-src 'self' https://use.typekit.net data: https://ka-p.fontawesome.com; form-action 'self';media-src 'self'; connect-src 'self' https://www.facebook.com https://matomo.dauphin.de https://ka-p.fontawesome.com https://kit.fontawesome.com https://px.ads.linkedin.com https://region1.google-analytics.com; object-src 'none'; img-src 'self' www.googletagmanager.com https: data:; style-src 'self' 'unsafe-inline' https://use.fontawesome.com https://p.typekit.net https://stackpath.bootstrapcdn.com https://fonts.googleapis.com; frame-src 'self' youtube.com www.youtube.com https://www.youtube-nocookie.com https://ui.pcon-solutions.com https://s1.eaiws.pcon-solutions.com https://s2.eaiws.pcon-solutions.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://connect.facebook.net https://www.googletagmanager.com https://kit.fontawesome.com https://vjs.zencdn.net https://test.dauphin.celum.hosting https://cdnjs.cloudflare.com https://stackpath.bootstrapcd- strict-transport-security
max-age=21600000