gdi-sh.de
gdi-sh.de
HTML metadata
Social
Registration
- Updated
- 2025-09-09
- Name servers
-
- ns2.inwx.de.
- ns3.inwx.eu.
- ns.inwx.de.
DNS records live
- NS
-
- ns.inwx.de
- ns2.inwx.de
- ns3.inwx.eu
- TXT
-
D-TRUST=5FET6YPQ5AZTSZXLB9Y5Y8A
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
D-TRUST BR CA 2-23-1 2023
Expires in 153 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-content-type-options
nosniff- content-security-policy
default-src 'self' *.googleapis.com cdnjs.cloudflare.com *.gdi-sh.de efi2.schleswig-holstein.de efi.schleswig-holstein.de phpefi.schleswig-holstein.de *.openstreetmap.org *.openstreetmap.fr *.openstreetmap.de cdn.podigee.com phpefi.schleswig-holstein.de *.podigee-cdn.net *.kaltura.com landesportal-sh.dwebanalytics.de luftdaten.umweltbundesamt.de; base-uri 'self'; style-src 'self' 'unsafe-inline' *.openstreetmap.org *.openstreetmap.fr *.openstreetmap.de *.schleswig-holstein.de *.gdi-sh.de cdnjs.cloudflare.com cdn.podigee.com *.podigee-cdn.net *.bootstrapcdn.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googleapis.com *.google.com *.gstatic.com *.youtube.com *.youtube-nocookie.com *.ytimg.com phpefi.schleswig-holstein.de *.openstreetmap.org *.openstreetmap.de *.vimeo.com *.schleswig-holstein.de *.gdi-sh.de cdn.podigee.com *.podigee-cdn.net cdnjs.cloudflare.com landesportal-sh.dwebanalytics.de *.summ-ai.com; object-src luftdaten.umweltbundesamt.de; media-src 'self' blob: multimed- strict-transport-security
max-age=31536000
Links to (7)
- facebook.com×2
- instagram.com×2
- itvsh.de×2
- schleswig-holstein.de×2
- x.com×2
- xing.com×2
- youtube.com×2