dbwv.de

HTML metadata

Technology

Server

nginx

Social widgets

• Vimeo Embed

Third-party hosts loaded (3)

• code.etracker.com×1
• player.vimeo.com×1
• vrweb15.linguatec.org×1

Social

• linkedin
• facebook
• twitter
• instagram
• youtube

Registration

Updated

2016-10-05

Name servers

• ns0.dns-net.de.
• ns7.dns-net.de.

DNS records live

NS

• ns0.dns-net.de
• ns7.dns-net.de

MX

• 0 dbwv-de.mail.protection.outlook.com

TXT

• MS=B51786F25874718CCA153CCAD8F052B60462048C
• MS=D9014B3FFE601FB5E431BA25B8C0CE9EE39879FB
• goodnotes-verification=dca073e4-5857-45cd-93c6-2604e7f9d88a

Verified for

• Apple
• Atlassian
• Brevo
• Cisco
• Microsoft 365

Email authentication partial

SPF

v=spf1 mx a include:spf.tixxt.com include:spf.protection.outlook.com include:spf.academymaker.de include:mailgun.org include:spf.sendinblue.com include:webmail.woelferdruck.de include:ispgateway.de ip4:185.65.194.175 -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com,mailto:mailsec@dbwv.de;

policy: none (monitoring only)

DKIM

• mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.dbwv.de/

present

• strict-transport-security
• x-frame-options
• x-content-type-options

findings

• missing Content Security Policy
• missing Referrer Policy
• missing Permissions Policy

Links to (10)

• flickr.com×2
• foeg.de×2
• instagram.com×2
• linkedin.com×2
• twitter.com×2
• wikipedia.org×2
• youtube.com×2
• bildungswerk-dbwv.de×2
• cda-bund.de×2
• facebook.com×2

Linked from (2)

• bildungswerk-dbwv.de×2
• veteranenkultur.de×2