indexo.dev

flensburg-marathon.de

.de crawl

First seen 2026-04-12 · Last seen 2026-04-30 · ok HTTP/1.1 200 947 ms crawled 2026-05-05

DE · 88.198.220.177 · AS24940 Hetzner Online GmbH

Reputation 95/100 weak security headers

sector sports type homepage

HTML metadata

Title
Startseite - Flensburg liebt dich Marathon
Language
de
Generator
TYPO3 CMS
Canonical
https://flensburg-marathon.de/
Translations
  • da-dk
  • de-de
  • en-gb

Open Graph

title
Startseite

Technology

Server
HTTP
Social widgets
  • YouTube Embed

Third-party hosts loaded (2)

  • consent.cookiebot.eu×1
  • www.youtube-nocookie.com×1

Social

Registration

Updated
2023-12-13
Name servers
  • ns1.your-server.de.
  • ns3.second-ns.de.
  • ns.second-ns.com.

DNS records live

NS
  • ns.second-ns.com
  • ns1.your-server.de
  • ns3.second-ns.de
MX
  • 10 www317.your-server.de
TXT
  • v=spf1 +a +mx include:spf.crsend.com ?all
  • v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAJ5o7K308N4MiIj+ozqTRkWaAJe2b0jVZ791uQvIo5waM6zml7TDLokkjTz2oZwkjqkabHc0rXK1i0NIuc73z3GX17r9rPz6ZaUYxci0l9x8sppH+w2I2vPdmR2wrB4S/pz4A1gZuzMx9cO1CGGcKwGzllQrFnsWNVVdtMi7XNk0MXgTByXRbm5N1ETeydMo02w1IVnJMSRl6io0OhLN4Gl+1oa5uATz/TxXg54zC4rvzFmEAAxlMjs08NCkje5Alpw9IxYCsxTfaXKFAduxxx91tPVIQ9S3vGD5zJm5+ICtFHjtktG0O+2jE0fvHDfDVbe3fEsFU5uL3M0rh9ApQIDAQAB

Certificate (current)

Encryption Everywhere DV TLS CA - G2
from 2025-10-16 to 2026-10-16
Expires in 149 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://flensburg-marathon.de/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' *.cookiebot.eu *.google.com; script-src 'self' 'nonce-wTfocSfAAw0G_F1wR8CzSzxbsA7KCAugcpjYbhV_1-bvm30hc4PRHA' 'strict-dynamic' *.youtube-nocookie.com *.youtube.com *.vimeo.com *.cookiebot.eu *.ddev.site *.hoch2.dev https://*.googletagmanager.com https://googletagmanager.com https://tagmanager.google.com https://www.google-analytics.com https://ssl.google-analytics.com https://www.googleadservices.com https://www.google.com https://googleads.g.doubleclick.net 'unsafe-inline' 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://*.usercentrics.eu https://*.google-analytics.com https://*.googletagmanager.com https://googletagmanager.com https://ssl.gstatic.com https://www.gstatic.com https://googleads.g.doubleclick.net https://www.google.com https://google.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com *.cookiebot.eu *.ddev.site *.hoch2.dev https://www.googletagma

Links to (19)

Linked from (1)