gepa.de

HTML metadata

Title

Home | GEPA

Description

Fairer Handel macht einen Unterschied: Entscheide dich mit uns immer wieder dafür, die Welt ein Stück gerechter zu machen.

Language

de

Generator

TYPO3 CMS

Canonical

https://www.gepa.de/

Translations

de
en
es

Feeds

RSS Feed - Gepa News RSS

Technology

Server: Apache

Cookie consent

Usercentrics

Third-party hosts loaded (4)

app.usercentrics.eu×3
privacy-proxy.usercentrics.eu×3
api.usercentrics.eu×1
code.etracker.com×1

Social

Contact

Email

info@gepa.de

Phone

+490202266830

Registration

Updated

2021-10-20

Name servers

ns51.domaincontrol.com.
ns52.domaincontrol.com.

DNS records live

NS

ns51.domaincontrol.com
ns52.domaincontrol.com

MX

100 gepa-de.mail.protection.outlook.com

TXT

Show 8 TXT records

MS=ms84244650
d365mktkey=wwjnewecxkryhlnczm8cu2xp
msfpkey=ql65chxc3bjr5y8iux1v2l8h
kGmZ51I6s2rzXYgq4q539EshnlJWcAXy4qETwX3IMtDzKcqeFTd0RKZtEOek9POAz3nL1RhCz1+nH+WbRxTauQ==
facebook-domain-verification=r424bn17hacv45ygtmyuvujlvcp57h
google-site-verification=1tZDRbmW9U0zgDUyj6TsO9_-2vPKb9HnKj9g55yMhC8
apple-domain-verification=JafhugULYgF3mhhB
pjejd9bki79ngqdijmdhicgg6j

Email authentication strong

SPF

v=spf1 mx a ip4:178.77.82.159 ip4:18.211.9.206 ip4:62.153.69.250 ip4:62.153.69.252 ip4:62.153.69.254 ip4:213.95.132.52 ip4:213.155.74.87 ip4:213.155.74.23 ip4:213.155.74.157 ip4:213.155.74.133 include:spf.protection.outlook.com include:spf.docuguide.com include:spf-de.emailsignatures365.com ~all

softfail (~all)

DMARC

v=DMARC1; p=reject; rua=mailto:postit@gepa.de; ruf=mailto:postit@gepa.de

policy: reject (enforced)

DKIM

Show 4 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDzou6VWiK9ma5yovJlGRJL3WbTM/Nf0aXZujH4fQSQai+A9ZfGizp9jZGviCb3L0lnnmQID73zqV/+LhmcKW…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDF6HRNx47yYHYjYQTs3zikLifBtK9OQ1UsyjOmQcI2Znmt4MWMMRPKo1IfHe1+kUtJ1/EMe9uRL5nQOPKtg/…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmP6uQ9iBA0A2yZX6e920KGn8yHRDN3ygjLN3Q+P3JZlKHMnigMpVMeV987gKr8AKisSy1eHO8TXti27Evl…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDRjoKwWLYYYqrMgcrJe1qdUJfG5FQMQbGm877O3sJzzkPFWifi0KU21Z91DCWZ37t1Mq2dhDxxDQkaMS+TCZN5Wj…

selectors probed

Certificate (current)

Starfield Secure Certificate Authority - G2

from 2025-06-22 to 2026-07-22

Expires in 63 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.gepa.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.usercentrics.eu *.facebook.net *.etracker.com *.dynamics.com *.azureedge.net *.chatmodul.de; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.googletagmanager.com *.google-analytics.com *.msftauth.net *.usercentrics.eu *.azureedge.net *.facebook.net *.etracker.net *.etracker.com *.etracker.de *.chatmodul.de 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com *.gepa.de *.google-analytics.com *.usercentrics.eu *.facebook.net *.facebook.com *.cloudfront.net maps.google.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com *.googletagmanager.com *.chatmodul.de; font-src 'self' *.usercentrics.eu *.facebook.net *.etracker.com *.dynamics.com *.azureedge.net *.chatmodul.de data: *.perplexity.ai; style-src 'self' *.usercentrics.eu *.facebook.net *.etracker.com *.dynamics.com *.azureedge.net *.chatmodul.de 'unsafe-inline' 'report-sample'; worker-src blob: 'report-sample'; connect-
strict-transport-security: max-age=31536000