indexo.dev

grossschoenau.de

.de crawl

First seen 2026-04-15 · Last seen 2026-05-19 · ok HTTP/1.1 200 1191 ms crawled 2026-05-08

DE · 85.13.150.86 · AS34788 Neue Medien Muennich GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
grossschoenau.de
Language
de
Generator
BLUEPAGE-CMS V3.28.0

Technology

Server
Apache

Social

Registration

Updated
2011-04-20
Name servers
  • ns5.kasserver.com.
  • ns6.kasserver.com.

DNS records live

NS
  • ns5.kasserver.com
  • ns6.kasserver.com
MX
  • 10 mx-03.bwk.net
TXT
  • _globalsign-domain-verification=ibgaTFb1J1ok4uw6ijw4uQxYbAVDQp5_cqbgib7L91
  • MS=ms45845820

Email authentication weak

SPF
v=spf1 mx a:mail.grossschoenau.de ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-27 to 2026-07-26
Expires in 68 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://www.grossschoenau.de/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
DENY
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; form-action 'self' https://www.grossschoenau.de/; default-src 'self' data:; img-src 'self' https://*.openstreetmap.org/ https://*.hereapi.com/ https://*.mapbox.com/ https://www.grossschoenau.de/ blob: data:; font-src 'self' data:; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.grossschoenau.de/ https://plugin.vbotickets.com/; style-src 'self' 'unsafe-inline' https://plugin.vbotickets.com/; frame-src 'self' 'unsafe-inline' https://www.google.com/ https://*.youtube-nocookie.com/ https://www.youtube.com/ https://plugin.vbotickets.com/;frame-ancestors 'none'; connect-src 'self' https://www.grossschoenau.de/ blob: data:;

Links to (5)

Linked from (3)