deutscheback.de
deutscheback.de
HTML metadata
Technology
- Server
- Apache
- CMS
- WordPress
Registration
- Updated
- 2023-09-27
- Name servers
-
- pns41.cloudns.net.
- pns42.cloudns.net.
- pns43.cloudns.net.
- pns44.cloudns.net.
DNS records live
- NS
-
- pns41.cloudns.net
- pns42.cloudns.net
- pns43.cloudns.net
- pns44.cloudns.net
- MX
-
- 0 deutscheback-de.mail.protection.outlook.com
- Verified for
-
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 mx include:spf.mailsec.omc.net a:mail.swgonline.de include:mail.zendesk.com include:spf.protection.outlook.com include:spf.eu.exclaimer.net include:spf.crsend.com -allstrict (-all) - DMARC
-
v=DMARC1; p=quarantine; rua=mailto:dmarc@stern-wywiol-gruppe.de; fo=0; ri=86400policy: quarantine - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYMnUykTx7WSJdW6Df4z5d5MhRNJxurrxPAIoUfPWBzROhgYN2TZbQzjS37NJSJnIew3LTh58pPbUb…
selectors probed - selector1:
Certificate (current)
Encryption Everywhere DV TLS CA - G2
Expires in 201 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
ALLOW-FROM https://www.googletagmanager.com/- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'nonce-deutscheback' https://deutscheback.de/includes/shariff/ https://www.googletagmanager.com/ https://ajax.googleapis.com/; connect-src 'self' https://www.google-analytics.com/j/ https://www.googletagmanager.com/ https://region1.google-analytics.com/g/; img-src 'self' https://region1.google-analytics.com/g/; style-src 'self' 'unsafe-inline' https://oss.maxcdn.com/libs/ https://s3.amazonaws.com/;base-uri 'self';form-action 'self';font-src 'self'- strict-transport-security
max-age=31536000; includeSubDomains; preload