hifi-schluderbacher.de
hifi-schluderbacher.de
HTML metadata
Technology
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (5)
- schluderbacher.mh-cf.de×39
- app.mailjet.com×1
- img.idealo.com×1
- www.googletagmanager.com×1
- x829y.mjt.lu×1
Social
Contact
Registration
- Updated
- 2021-12-16
- Name servers
-
- ns3.stratoserver.net.
- ns4.stratoserver.net.
DNS records live
- NS
-
- ns3.stratoserver.net
- ns4.stratoserver.net
- MX
-
- 10 hifischluderbacher-de01b.mail.protection.outlook.com
- TXT
-
v=DMARC1; p=none; rua=mailto:dmarc@schluderbacher.de; adkim=r; aspf=r
- Verified for
-
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 include:spf.protection.outlook.com include:mailgun.org ip4:81.169.146.168/29 ip4:85.215.255.48/28 ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=reject;policy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxh7Gzt28C0Ry/hyl19u+JV8feWTQS0405nviShs2BZFN5ZzTevimpvJbrHGXvUyPdBf6V/ttSczX7x…
selectors probed - selector1:
Certificate (current)
R13
Expires in 35 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
Header values
- x-frame-options
SAMEORIGIN- permissions-policy
microphone=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; connect-src *; font-src *; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';- strict-transport-security
max-age=31536000; includeSubDomains; preload
Links to (10)
- cloudflare.com×1
- facebook.com×1
- google.com×1
- google.de×1
- hiw24.de×1
- idealo.de×1
- instagram.com×1
- paypal.com×1
- trustpilot.com×1
- youtube.com×1