indexo.dev

elbi.it

.it crawl

First seen 2026-05-28 · Last seen 2026-05-30 · ok HTTP/1.1 200 723 ms crawled 2026-05-30

NL · 136.144.233.118 · AS20857 Signet B.V.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
En | Elbi
Description
Fondata nel 1965 a Vigodarzere (PD), Elbi si è sempre contraddistinta per la varietà di gamma e la vocazione internazionale. L’azienda opera infatti da quasi 50 anni nel campo della termoidraulica, costruendo nel tempo una solida reputazione ed immagine di se stessa nei maggiori mercati mondiali.
Language
en-US
Canonical
https://elbi.it/en

Open Graph

url
https://elbi.it/en
title
En | Elbi
locale
en_US
site name
Elbi
description
Fondata nel 1965 a Vigodarzere (PD), Elbi si è sempre contraddistinta per la varietà di gamma e la vocazione internazionale. L’azienda opera infatti da quasi 50 anni nel campo della termoidraulica, costruendo nel tempo una solida reputazione ed immagine di se stessa nei maggiori mercati mondiali.

Technology

Server
nginx
CMS
Nuxt
JS framework
Nuxt

Social

Contact

Email
Phone

DNS records live

NS
  • ns1.register.it
  • ns2.register.it
MX
  • 10 elbi-it.mail.protection.outlook.com
TXT
  • MS=94D50FDA1666BB0F48DC28AAA9C20F234FE2EADC
Verified for
  • Google
  • Microsoft 365

Email authentication weak

SPF
v=spf1 a:mail1.elbi.it a:mail.elbi.it ip4:2.40.58.83/28 include:spf.webapps.net include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-05-04 to 2026-08-02
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://elbi.it/en

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
camera=(), display-capture=(), fullscreen=(*), geolocation=(), microphone=()
x-content-type-options
nosniff, nosniff
content-security-policy
base-uri 'none'; font-src 'self' https: data:; form-action 'self'; frame-ancestors 'self'; img-src 'self' data: https://* https://backend.elbi.it; object-src 'none'; script-src-attr 'self' 'unsafe-inline'; style-src 'self' https: 'unsafe-inline'; script-src 'self' https://elbi-vag9t.ondigitalocean.app https://elbi.it https://*.cloudflare.com https://*.ondigitalocean.com 'unsafe-inline' https://app.legalblink.it https://www.googletagmanager.com; upgrade-insecure-requests;
strict-transport-security
max-age=15552000; includeSubDomains
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-origin

Links to (7)

Linked from (1)