indexo.dev

hapag-lloyd-reisebuero.de

.de crawl

First seen 2026-05-08 · Last seen 2026-05-08 · ok HTTP/1.1 200 2395 ms crawled 2026-05-14

AT · 193.58.164.112 · AS202516 web-crossing GmbH

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Startseite
Generator
WordPress 6.9.4
Canonical
https://hapag-lloyd-reisebuero.de/

Technology

Server
Apache
CMS
WordPress
Analytics
  • Google Tag Manager

Third-party hosts loaded (6)

  • tui-mysite.numbirds.com×3
  • widget.accessgo.de×2
  • maps.google.com×1
  • mein.clickskeks.at×1
  • www.google.com×1
  • www.googletagmanager.com×1

Social

Contact

Phone

Registration

Updated
2023-12-05
Name servers
  • ns01.brandshelter.com.
  • ns02.brandshelter.net.

DNS records live

NS
  • ns01.brandshelter.com
  • ns02.brandshelter.net
MX
  • 10 hapaglloydreisebuero-de01ci.mail.protection.outlook.com
TXT
Show 5 TXT records
  • _lqhz6vh85vjhwsuw5lrancxs28sey6j
  • t52vjt50498n69s86j1zplv66qpdspff
  • pfljp7b2ynvw4895vbhyq910mx1kkj1t
  • _xiorp4wc56i060hwoybj00g7hom0jq6
  • 1lkwk3dxy5qwqhj2b5zgggs43km2p6md
Verified for
  • Atlassian
  • Google
  • Microsoft 365
  • Miro

Email authentication strong

SPF
v=spf1 ip4:80.87.174.253 ip4:80.87.174.250 ip4:80.87.174.251 ip4:80.87.174.252 include:mail.tuigroup.com a:mail.tui.de include:_spf.e-confirm.de include:spf.amadeus-leisure-it.com include:_relay.amadeus.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100; fo=1; ri=3600; rua=mailto:2256e681@inbox.ondmarc.com; ruf=mailto:2256e681@inbox.ondmarc.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Thawte TLS RSA CA G1
from 2025-08-07 to 2026-08-07
Expires in 78 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://hapag-lloyd-reisebuero.de/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (4)

Linked from (1)