fisiait.com
fisiait.com
HTML metadata
Technology
- CMS
- Gatsby
- Stack
- ASP.NET
Social
Contact
- Phone
- Address
- Via De Marini, 1-16149 Genova - ITALY
Registration
- Registrar
- Register SPA
- Created
- 1998-12-04
- Expires
- 2026-12-03 185 days left
- Updated
- 2024-06-18
- Name servers
-
- ns1.register.it
- ns2.register.it
DNS records live
- NS
-
- ns1.register.it
- ns2.register.it
- MX
-
- 5 fisiait-com.mail.protection.outlook.com
Email authentication weak
- SPF
-
v=spf1 ip4:93.39.88.196/28 include:spf.protection.outlook.com include:spf-de.emailsignatures365.com include:musvc.com -allstrict (-all) - DMARC
- not published
- DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniVs8+Ux8OABfnqDLpeJaEojx2c2KUb5eVbSEk1VDz1yK76n43oo1oPMBOnlFSAsBLhwMFNjxqP4YJ… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKpBys0FdtDsid0Hfs4AwFgAtHawRCX8Vvo92ADpPHp7dELELLz+4XAhVylD66Gwmfo5QLhfjpKcev…
selectors probed - selector1:
Certificate (current)
Don Dominio RSA DV SSL CA 2
Expires in 266 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' *.fisiait.com; script-src 'self' 'unsafe-inline' matomo.engitel.com *.vimeo.com *.youtube.com *.google.com *.gstatic.com *.jsdelivr.net *.polyfill.io *.fisiait.com; style-src 'self' 'unsafe-inline' *.fisiait.com data:; font-src 'self' data:; img-src 'self' data: matomo.engitel.com; frame-src 'self' *.vimeo.com *.youtube-nocookie.com *.google.com- strict-transport-security
max-age=63072000; includeSubDomains; preload