indexo.dev

hallonachbar.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 3951 ms crawled 2026-05-19

DE · 18.159.229.114 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
hallo nachbar | Das Magazin von EWE
Description
hallo nachbar bietet Berichte, Videos und mehr zu Themen wie Energiewende, Elektromobilität, Smart Home oder Windkraft und das Gewinnspiel aus dem Magazin.
Language
de
Canonical
https://www.hallonachbar.de/de/

Open Graph

url
https://www.hallonachbar.de/de/
site name
hallo nachbar - das Magazin von EWE

Technology

CDN
Amazon CloudFront
Server
aws
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Social

Registration

Updated
2016-03-08
Name servers
  • ans0.ewetel.de.
  • ans1.ewetel.net.
  • ans2.ewetel.de.
  • ans3.ewetel.net.

DNS records live

NS
  • ans0.ewetel.de
  • ans1.ewetel.net
  • ans2.ewetel.de
  • ans3.ewetel.net
MX
  • 10 mx-x0.ewetel.de
Verified for
  • Google

Email authentication strong

SPF
v=spf1 -all
strict (-all)
DMARC
v=DMARC1;p=reject;rua=mailto:24aa54bdef@rua.easydmarc.eu;aspf=s;adkim=s
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Amazon RSA 2048 M03
from 2025-08-21 to 2026-09-20
Expires in 122 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.hallonachbar.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self), microphone=(), camera=()
x-content-type-options
nosniff
content-security-policy
script-src 'nonce-HYtoWJ1ImqXcIVmPKYdWS0bzVc9agJKt+Fnq1KZcyz8=' 'unsafe-eval' 'strict-dynamic' 'self' *.dtvp.de *.cookiebot.com *.googletagmanager.com *.googleapis.com *.google-analytics.com *.xing-share.com *.facebook.com *.facebook.net *.instagram.com *.twitter.com *.linkedin.com *.podigee.com *.podigee-cdn.net *.podlove.org *.cleverpush.com *.outbrain.com *.flockler.com *.seobility.net maps.google.com track.ewe.de chat.ato.botario.com chat.ewe.botario.com *.consentmanager.net *.doubleclick.net *.ewe.com; media-src 'self' blob: data:; base-uri 'self' track.ewe.de; object-src 'self'; style-src 'self' 'unsafe-inline'; style-src-elem 'self' 'unsafe-inline' track.ewe.de *.consentmanager.net *.ewe.com fonts.googleapis.com; frame-ancestors 'self'; frame-src 'self' consentcdn.cookiebot.com plugins.flockler.com www.youtube-nocookie.com www.facebook.com b2b.ewe.de *.consentmanager.net *.doubleclick.net *.googletagmanager.com
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-origin

Links to (2)

Linked from (1)