indexo.dev

elan-klub.cz

.cz crawl

First seen 2026-05-28 · Last seen 2026-05-30 · ok HTTP/1.1 200 1165 ms crawled 2026-05-30

FR · 178.32.252.114 · AS16276 OVH SAS

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Nadšení pro lyžování, Elan pro lyžaře | Elan klub
Description
Elan klub je prostě místo, kde se potkávají lyžaři. Je tu pro všechny nadšence, co sdílí inovátorského ducha značky lyží ELAN. Být členem klubu se vyplatí,...
Language
cs

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • scontent-waw2-2.cdninstagram.com×5
  • scontent-waw2-1.cdninstagram.com×1
  • www.googletagmanager.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • inet.faster.cz
  • inet.zelenadata.cz
MX
  • 0 elanklub-cz01b.mail.protection.outlook.com
Verified for
  • Microsoft 365

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com include:spf.contimex.cz ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-05-13 to 2026-08-11
Expires in 71 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.elan-klub.cz/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
DENY
permissions-policy
accelerometer=(), autoplay=(), camera=(), display-capture=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
style-src 'self' 'unsafe-inline' fonts.googleapis.com *.typekit.net *.cookiehub.net cdn.cookiehub.eu; img-src 'self' data: *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndication.com *.g.doubleclick.net *.google.com *.google.cz *.doubleclick.net *.facebook.com *.cdninstagram.com *.fbcdn.net api.mapbox.com *.seznam.cz; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.google.com/recaptcha/ www.gstatic.com/recaptcha/ *.googletagmanager.com *.g.doubleclick.net *.cookiehub.net cdn.cookiehub.eu *.google-analytics.com *.facebook.net *.seznam.cz; font-src 'self' fonts.gstatic.com *.typekit.net; connect-src 'self' *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndication.com *.g.doubleclick.net *.google.com *.google.cz *.cookiehub.net *.facebook.com; default-src 'self' www.google.com/recaptcha/ www.googletagmanager.com www.youtube.com/embed/ www.google.com/maps/ *.doubleclick.net *.issuu.com; frame-src *.google.com
strict-transport-security
max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy
same-origin; report-to="default"
cross-origin-embedder-policy
unsafe-none; report-to="default"
cross-origin-resource-policy
same-origin

Links to (7)

Linked from (2)