erdal.de

HTML metadata

Technology

Server

Apache

CMS

WordPress

Third-party hosts loaded (1)

• consent.werner-mertz.de×1

Registration

Updated

2015-07-26

Name servers

• ns.udag.de.
• ns.udag.net.
• ns.udag.org.

DNS records live

NS

• ns.udag.de
• ns.udag.net
• ns.udag.org

MX

• 0 erdal-de.mail.protection.outlook.com

TXT

• gcu17p954lravj6qike30v0mue

Verified for

• Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com -all

strict (-all)

DMARC

not published

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.erdal.de/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (5)

• bufalo.es×3
• werner-mertz.de×3
• bufalo.be×1
• bufalo.pl×1
• erdal.at×1

Linked from (2)

• werner-mertz.de×3
• bufalo.es×2