indexo.dev

elbland-reha.de

.de crawl

First seen 2026-04-22 · Last seen 2026-05-19 · ok HTTP/1.1 200 8175 ms crawled 2026-05-16

DE · 217.160.0.76 · AS8560 IONOS SE

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
ELBLAND Rehabilitationsklinik Großenhain | Elblandkliniken - Reha
Language
de
Generator
TYPO3 CMS
Canonical
https://www.elbland-reha.de/

Technology

Server
nginx

Social

Registration

Updated
2025-11-19
Name servers
  • ns.ui-global-dns.biz.
  • ns.ui-global-dns.com.
  • ns.ui-global-dns.de.
  • ns.ui-global-dns.org.

DNS records live

NS
  • ns.ui-global-dns.biz
  • ns.ui-global-dns.com
  • ns.ui-global-dns.de
  • ns.ui-global-dns.org
MX
  • 10 mx1.elblandkliniken.de
  • 20 mx2.elblandkliniken.de
Verified for
  • Cisco

Email authentication weak

SPF
v=spf1 mx -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-11 to 2026-06-26
Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.elbland-reha.de/

present
  • strict-transport-security
  • content-security-policy
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
sameorigin
permissions-policy
accelerometer=(), camera=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'nonce-FGXxKRHZ6vjftNCXmJi3ZQG6I4yTTU3ojxbNaxADUyOykeENkiMrxg' 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://maps.googleapis.com https://maps.gstatic.com matomo.itsc.de https://*.youtube-nocookie.com player.vimeo.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://*.googletagmanager.com https://*.youtube-nocookie.com player.vimeo.com; media-src 'self' blob:; script-src-elem 'self' 'nonce-FGXxKRHZ6vjftNCXmJi3ZQG6I4yTTU3ojxbNaxADUyOykeENkiMrxg' https://maps.googleapis.com/maps/api/js https://matomo.itsc.de https://www.youtube.com https://*.noembed.com https://player.vimeo.com https://cdn.plyr.io 'sha256-grPtxt1riG/X2N2CpfscXtom/x93q9Zl6Hu3/z1fHNg=' 'report-sample'; font-src 'self' data: https://fonts.gstatic.com; style-src-elem 'self' https://fonts.googleapis.com 'sha256-EkTRRPMPg9ES3zGmWA8pjI262+e9nVCHLBsYnoQDSSA=' 'sha256-jIYV6PHMu
strict-transport-security
max-age=31536000;
content-security-policy-report-only
default-src 'self'; script-src 'self' 'nonce-FGXxKRHZ6vjftNCXmJi3ZQG6I4yTTU3ojxbNaxADUyOykeENkiMrxg' 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://maps.googleapis.com https://maps.gstatic.com matomo.itsc.de https://*.youtube-nocookie.com player.vimeo.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://*.googletagmanager.com https://*.youtube-nocookie.com player.vimeo.com; media-src 'self' blob:; script-src-elem 'self' 'nonce-FGXxKRHZ6vjftNCXmJi3ZQG6I4yTTU3ojxbNaxADUyOykeENkiMrxg' https://maps.googleapis.com/maps/api/js https://matomo.itsc.de https://www.youtube.com https://*.noembed.com https://player.vimeo.com https://cdn.plyr.io 'sha256-grPtxt1riG/X2N2CpfscXtom/x93q9Zl6Hu3/z1fHNg=' 'report-sample'; font-src 'self' data: https://fonts.gstatic.com; style-src-elem 'self' https://fonts.googleapis.com 'sha256-EkTRRPMPg9ES3zGmWA8pjI262+e9nVCHLBsYnoQDSSA=' 'sha256-jIYV6PHMu

Links to (8)

Linked from (12)