domainreselling.de
domainreselling.de
HTML metadata
Technology
- Server
- Apache
Registration
- Updated
- 2015-07-24
- Name servers
-
- ns.udag.de.
- ns.udag.net.
- ns.udag.org.
DNS records live
- NS
-
- ns.udag.de
- ns.udag.net
- ns.udag.org
- MX
-
- 10 mx00.udag.de
- 20 mx01.udag.de
Email authentication weak
- SPF
-
v=spf1 ip4:82.135.96.208/28 ip4:80.152.226.24/32 ip4:89.31.137.0/24 ip4:213.183.18.0/28 ip4:213.183.18.32/27 ip4:213.131.239.224/28 ip4:213.203.225.128/27 ip4:109.234.108.0/23 ip4:62.146.106.0/24 ip4:88.99.100.66/32 mx ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 136 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
frame-ancestors https://www.paypal.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://www.paypal.com; font-src 'self' data:; img-src 'self' data: https://domainreselling.de https://www.united-domains.de https://*; base-uri 'self' https://www.paypal.com; style-src 'self' 'unsafe-inline'; connect-src 'self' https://ipayment.de https://www.paypal.com; form-action 'self' https://www.paypal.com https://domainreselling.de https://ipayment.de; frame-src 'self' https://www.paypal.com; default-src 'none'- strict-transport-security
max-age=31536000; includeSubDomains; preload