indexo.dev

gelsia.it

.it crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 1006 ms crawled 2026-06-01

US · 159.60.134.212 · AS35280 F5 Networks SARL

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Home | Gelsia
Description
gelsia.it - new
Language
it

Technology

Server
volt-adc
CMS
Drupal
Analytics
  • Google Tag Manager

Third-party hosts loaded (2)

  • static.addtoany.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

DNS records live

NS
  • dns1.a2a.eu
  • dns2.a2a.eu
  • dns3.a2a.eu
  • dns4.a2a.eu
  • dns5.a2a.eu
MX
  • 10 mxa-001dc302.gslb.pphosted.com
  • 10 mxb-001dc302.gslb.pphosted.com
TXT
Show 4 TXT records
  • LMDkCNMOus2Pa6CmbTzBSVFd1A3hNxjqlJKJIknvu7ZCnxz2JcoLAeqllg+ZkBucYnqKSRZZNzoIPc5CwZCDDg==
  • yoof/WioHAsDfx01OfGQlEKLJwLwnbu/SCP8eomcDL3n5W7ERBHqs7T4E+f1ZJKIaUX0BIe9ecJk9TW+FMLg+A==
  • SHSeDs0TI5VZEhOJb9hvSubLkfPcNInd7TyO1I8l+2AL9/oKCdxDUAdSAsHHZuniOoJcAiVsfzncoNxU0mFGkA==
  • O6i5xX18VZvPKYAgLJT8tu8jon9eAOilYwfQ3yQiv8J6gfAzD5WzUIwwj3wVFDjazsYTjZSyVFLebpqvA78cYQ==
Verified for
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVwNDNMmtmALWWSqAN8Hgtt4IRkpg2A824Vl8U9Z2qj+NBv0+ZIZZ1ZmKjf120LJktR9KaC0k2Bewi…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBbfbZafFpBGD17jYOfD8xuo//Zrj+mNlvMf9dVqnjVc9yXq9V/AzX8UdpU9nWB1xr/LODQiy2ioPz0UEf…
  • s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDUBtrdx9QVcYRg/hboJEskg6TDicSTDH2h7ygwOX5cF5cPJySdFo1z0wEDrVzznznUqJE98ffqodk+kHW7LVJrK1…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-09-16 to 2026-10-06
Expires in 125 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.gelsia.it

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-eval' 'unsafe-inline' https://cdn.iubenda.com https://cs.iubenda.com https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://connect.facebook.net https://googleads.g.doubleclick.net https://snap.licdn.com https://static.addtoany.com https://unpkg.com/ https://www.google.com/recaptcha/ https://www.googletagmanager.com/ https://www.gstatic.com/; object-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.iubenda.com https://fonts.googleapis.com https://cdn.iubenda.com https://cdnjs.cloudflare.com https://unpkg.com/ https://cdn.jsdelivr.net/; img-src 'self' data: https:; frame-src 'self' https://static.addtoany.com https://td.doubleclick.net https://www.googletagmanager.com https://www.iubenda.com https://www.google.com https://www.youtube.com; child-src 'self'; upgrade-insecure-requests
strict-transport-security
max-age=63072000; includeSubDomains

Links to (8)

Linked from (1)