ecomserveri.fi
ecomserveri.fi
HTML metadata
Technology
- Server
- Apache
Registration
- Created
- 2007-08-15
- Name servers
-
- cns3.cloudpit.io [technical check not done]
- cns1.cloudpit.de [technical check not done]
- cns2.cloudpit.com [technical check not done]
DNS records live
- NS
-
- cns1.cloudpit.de
- cns2.cloudpit.com
- cns3.cloudpit.io
- MX
-
- 10 mx03.secure-mailgate.com
- 10 mx04.secure-mailgate.com
- TXT
-
tkr3ps5jf2nrne2df6sjrr3mk6
Email authentication weak
- SPF
-
v=spf1 include:spf.zoner.fi -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current) wrong cert
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 226 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src https://www.google.com/recaptcha/api.js https://www.gstatic.com/recaptcha/releases/ 'self'; connect-src 'self'; img-src http://localhost:* 'self' data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:; frame-src https://www.google.com/recaptcha/ com.citrix.agmacepa://* citrixng://* com.citrix.nsgclient://* vmware-view://* nsgcepa://* application://* receiver://* 'self'; child-src 'self' com.citrix.agmacepa://* citrixng://* com.citrix.nsgclient://* vmware-view://* nsgcepa://nsgcepa application://*; form-action 'self'; object-src 'none'; base-uri 'self'; report-uri /nscsp_violation/report_uri- strict-transport-security
max-age=157680000
Links to (1)
Linked from (1)
- ecom.fi×1