gesund-ins-leben.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-11 · ok HTTP/1.1 200 2649 ms crawled 2026-05-07

DE · 217.76.106.122 · AS20886 bn:t Blatzheim Networks Telecom GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Startseite- Gesund ins Leben
Description: Netzwerk Gesund ins Leben im Bundeszentrum für Ernährung (BZfE)
Language: de-DE
Generator: TYPO3 CMS
Canonical: https://www.gesund-ins-leben.de/

Open Graph

url: https://www.gesund-ins-leben.de/
title: Startseite
description: Netzwerk Gesund ins Leben im Bundeszentrum für Ernährung (BZfE)

Technology

Server: Apache

Social widgets

YouTube Embed

Third-party hosts loaded (1)

www.youtube-nocookie.com×1

Social

Registration

Updated

2020-03-25

Name servers

dns2.bn-online.net.
dns.blatzheim.com.
dns.bn-online.net.

DNS records live

NS

dns.blatzheim.com
dns.bn-online.net
dns2.bn-online.net

MX

10 mx1.bund.de
10 mx2.bund.de

Email authentication strong

SPF: v=spf1 a mx a:mailrelay.aid.de include:spfa.myconvento.com -all
strict (-all)
DMARC: v=DMARC1; p=none; rua=mailto:dmarc-report@ble.de;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-04-11 to 2026-07-10

Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.gesund-ins-leben.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin, same-origin, same-origin, strict-origin
x-frame-options: sameorigin
permissions-policy: camera=(), microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'unsafe-inline' 'self' maps.googleapis.com maps.google.com *.itzbund.de *.spotify.com; style-src 'unsafe-inline' 'self' maps.gstatic.com *.googleapis.com *.ggpht.com *.spotify.com; img-src data: blob: 'self' a.tile.openstreetmap.de maps.gstatic.com *.googleapis.com *.ggpht.com maps.google.com *.spotify.com; font-src 'self' fonts.gstatic.com *.googleapis.com *.ggpht.com *.spotify.com netdna.bootstrapcdn.com; frame-src 'self' *.youtube-nocookie.com *.vimeo.com *.blitzvideoserver.de intocities.com maps.gstatic.com *.googleapis.com *.ggpht.com *.spotify.com; frame-ancestors 'self' bioland.we.network; connect-src 'self' *.googleapis.com *.itzbund.de *.spotify.com
strict-transport-security: max-age=31536000; includeSubdomains;