geldermann.de

HTML metadata

Technology

Server

nginx

Analytics

• Google Tag Manager

Cookie consent

• Usercentrics

Social widgets

• YouTube Embed

Third-party hosts loaded (6)

• app.usercentrics.eu×3
• privacy-proxy.usercentrics.eu×3
• api.usercentrics.eu×1
• www.bugherd.com×1
• www.googletagmanager.com×1
• www.youtube-nocookie.com×1

Social

• youtube
• facebook
• instagram

Registration

Updated

2021-01-26

Name servers

• ns1a.dodns.net.
• ns2a.dodns.net.

DNS records live

NS

• ns1a.dodns.net
• ns2a.dodns.net

MX

• 10 geldermann-de.mail.eo.outlook.com

TXT

Show 4 TXT records

• google-site-verification=q783kxYrQ5eVMYPMKFsof4Up9Q6LPzOfFcbCJUrZiQE
• MS=ms77456939
• pinterest-site-verification=0e9254287bc00e7f0315266590f39b62
• swisssign-check=7syGYx68I8Mm3RwzICxXyrjHJ2c

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:spf.emailsignatures365.com include:spf.cloudmail.ondemand.com include:_spf.de.seppmail.cloud ip4:91.217.188.10 ip4:91.217.188.73 ip4:91.217.188.74 ip4:91.217.188.75 ip4:88.99.24.125 ip4:13.94.150.191 a:www.geldermann.de -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:aggregate@geldermann.de; ruf=mailto:forensic@geldermann.de; rf=afrf; sp=none; fo=0:1:d:s; adkim=r; aspf=r

policy: none (monitoring only) · sp=none

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQxXhiEohXVyurr58pJpMg2/bsilHRfj7OPw3VTuJJk8uZ70pG7BaSJIzjSaRj+Tg087lbA1ni5Owa…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.geldermann.de

present

• strict-transport-security
• content-security-policy
• x-content-type-options
• referrer-policy
• permissions-policy

findings

• CSP allows unsafe inline scripts/styles
• missing frame protection

Links to (5)

• facebook.com×2
• google.com×2
• instagram.com×2
• tripadvisor.de×2
• youtube.com×2

Linked from (1)

• das-festspielhaus.de×2