e-uslugi.pisz.pl
HTML metadata
Technology
- Server
- nginx
DNS records live
- NS
-
- dns.home.pl
- dns2.home.pl
- dns3.home.pl
- MX
-
- 0 pisz.home.pl
Email authentication strong
- SPF
-
v=spf1 a mx ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; rua=mailto:admin@pisz.home.pl; ruf=mailto:admin@pisz.home.pl; rf=afrfpolicy: quarantine - DKIM
-
- dkim:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzmGY7HNtfE3DBqz6gJjdZTbVt7p4/V/9Cu953o1G6Cf+8C5V/Oxzpr7xPQBeL6DuQx1fCxXGi46e9…
selectors probed - dkim:
Certificate (current)
Certum DV TLS G2 R39 CA
Expires in 219 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- weak frame protection
- weak content type protection
- missing Permissions Policy
Header values
- referrer-policy
no-referrer, strict-origin-when-cross-origin- x-frame-options
DENY, DENY- x-content-type-options
nosniff, nosniff, nosniff- content-security-policy
default-src https://www.google.com; connect-src 'self' blob: https://nominatim.openstreetmap.org; script-src 'self' 'unsafe-eval' https://www.google.com https://www.gstatic.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: blob: https://openlayers.org https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org; font-src 'self' data: https://fonts.gstatic.com; upgrade-insecure-requests; base-uri 'self'; frame-ancestors 'none'; form-action 'self' https://login.gov.pl/login/SingleSignOnService https://pbn.paybynet.com.pl/PayByNet/trans.do;- strict-transport-security
max-age=31536000 ; includeSubDomains, max-age=63072000; includeSubdomains