indexo.dev

farnostzidenice.cz

.cz crawl

First seen 2026-06-03 · Last seen 2026-06-03 · ok HTTP/1.1 200 408 ms crawled 2026-06-04

DE · 49.13.40.93 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Římskokatolická farnost u kostela sv. Cyrila a Metoděje, Brno - Židenice

Technology

Server
nginx
jQuery
1.11.0 known XSS (<3.5)
Stack
PHP
Fonts
  • Font Awesome
  • Google Fonts
Third-party hosts loaded (11)
  • www.agendafarnosti.cz×14
  • agendafarnosti.cz×9
  • o2.agendafarnosti.cz×6
  • fonts.googleapis.com×2
  • o1.agendafarnosti.cz×2
  • use.fontawesome.com×2
  • cirkevnistatistiky.cz×1
  • donator.cz×1
  • forms.agendafarnosti.cz×1
  • translate.google.com×1
  • www.facebook.com×1

Social

Contact

Email
Phone

DNS records live

NS
  • ns.wedos.com
  • ns.wedos.cz
  • ns.wedos.eu
  • ns.wedos.net
MX
  • 1 aspmx.l.google.com
  • 10 alt3.aspmx.l.google.com
  • 10 alt4.aspmx.l.google.com
  • 5 alt1.aspmx.l.google.com
  • 5 alt2.aspmx.l.google.com
Verified for
  • Google

Email authentication weak

SPF
v=spf1 a mx include:_spf.google.com include:_spf.we.wedos.net ip6:2a02:2b88:1:4::45 ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-04-29 to 2026-07-28
Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://farnostzidenice.cz/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing Referrer Policy
Header values
permissions-policy
unload=(self "https://www.facebook.com" "https://web.facebook.com" "https://staticxx.facebook.com" "https://static.xx.fbcdn.net")
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' https://booking.previo.app https://*.agendafarnosti.cz https://*.agendafarnosti.sk https://*.gemeindeagenda.at https://donator.cz https://*.fontawesome.com https://cirkevnistatistiky.cz https://js.stripe.com https://*.vaticannews.va https://*.jsdelivr.net https://*.cloudflare.com https://*.google.com https://*.googletagmanager.com https://*.google-analytics.com https://*.googleapis.com https://*.facebook.net https://*.facebook.com https://*.cloudflareinsights.com; frame-ancestors 'self' https://*.agendafarnosti.cz https://agendafarnosti.cz https://*.agendafarnosti.sk https://agendafarnosti.sk https://*.gemeindeagenda.at https://gemeindeagenda.at https://cirkevnistatistiky.cz;
strict-transport-security
max-age=63072000; includeSubDomains; preload, max-age=31536000
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (7)

Linked from (1)