difarmaconte.it
difarmaconte.it
HTML metadata
Technology
- Server
- nginx
- CMS
- Drupal
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- polyfill-fastly.io×1
- www.googletagmanager.com×1
DNS records live
- NS
-
- ns1-03.azure-dns.com
- ns2-03.azure-dns.net
- ns3-03.azure-dns.org
- ns4-03.azure-dns.info
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA OV R36
Expires in 62 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline' https://www.selfservice.comifar.it https://www.selfservice-test.comifar.it https://www.comifarconte.it https://www.difarmaconte.it https://www.farmalvarionconte.it; script-src 'self' 'unsafe-inline' www.googletagmanager.com https://fonts.googleapis.com https://app.powerbi.com/ https://polyfill-fastly.io https://cdn.jsdelivr.net https://apps.mypurecloud.com https://apps.mypurecloud.de https://api-cdn.mypurecloud.de https://www.google-analytics.com www.youtube.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; connect-src 'self' https://noembed.com www.google-analytics.com https://api-cdn.mypurecloud.de https://app.powerbi.com/ https://api.mypurecloud.de https://fileupload.mypurecloud.de wss://webmessaging.mypurecloud.de https://apps.mypurecloud.de https://selfservice-test.comifar.it https://it-crm-p-api-tree-alberatura-fa.azurewebsites.net https://it-crm-p-api-portaldashboardintegration.azurewebsites.net https://it-crm-p-api-tree-do- strict-transport-security
max-age=31536000; includeSubDomains