gasconnect.at
HTML metadata
Technology
- Server
- Apache
Third-party hosts loaded (1)
- walls.io×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.domaintechnik.at
- ns2.domaintechnik.at
- ns3.domaintechnik.at
- ns4.domaintechnik.at
- MX
-
- 10 mx01.gasconnect.at
- 10 mx02.gasconnect.at
- TXT
-
Show 5 TXT records
0e2903b7-2305-4b19-b019-d4d2eb75d2ffljzvhm3bh4jxldrwmzstd1s9h6t9pdkw0308b5d7-f446-45ca-baad-4d852c33de65dbf70b6b-d161-4042-ab99-cd0fcf6e3131linkedin-site-verification=832f62c6-7823-43bc-9591-b8fd32279f8b
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 a mx -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current) wrong cert
DigiCert Global G2 TLS RSA SHA256 2020 CA1
Expires in 108 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
Header values
- referrer-policy
origin-when-cross-origin- permissions-policy
microphone=(), geolocation=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' blob: 'unsafe-inline' *.mlwrx.com *.cloudfront.net *.google-analytics.com *.googletagmanager.com *.google.com *.googleapis.com *.gstatic.com *.jquery.com *.maxcdn.com analytics.gasconnect.at gasconnect.mailworx.info mailworx.marketingsuite.info; frame-src 'self' *.gasconnect.at *.walls.io walls.io *.whatchado.com whatchado.com *.google.com; connect-src 'self' *.mlwrx.com eu-api.friendlycaptcha.eu *.gasconnect.at mailworx.marketingsuite.info;- strict-transport-security
max-age=31536000