hochriess.at
HTML metadata
Technology
- Server
- Apache
Third-party hosts loaded (1)
- webcachex-eu.datareporter.eu×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.powerdns.at
- ns2.powerdns.at
- MX
-
- 10 mx.spamexperts.com
- 20 fallbackmx.spamexperts.eu
- 30 lastmx.spamexperts.net
Email authentication strong
- SPF
-
v=spf1 a include:spf.it-center.at include:spf.mailjet.com include:cemsc.net ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=quarantine; pct=100; rua=mailto:dmarc@it-center.atpolicy: quarantine - DKIM
-
- default:
v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp92hA47QXDLBK/1Zucr3rVGvxYaRejeOd51IfrvusIsS8XDhgIZ5iUToCHa5BRbuyu6vbar+xg1YOxImD0KHA…
selectors probed - default:
Certificate (current)
Encryption Everywhere DV TLS CA - G2
Expires in 129 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' https:; frame-src 'self' https://wildpark-hochriess.traumgutscheine.com/ https://hotel-hochriess.traumgutscheine.com/ https://hochriess.re-guest.com/ https://www.youtube-nocookie.com/ https://www.googletagmanager.com/ https://td.doubleclick.net/; style-src 'self' 'unsafe-inline' data: https:; font-src 'self' https: data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; img-src 'self' blob: data: https:; media-src 'self' data: https:; child-src 'self' https://hochriess.re-guest.com/; connect-src 'self' wss://hochriess-at.reguest-hub-api.reguest.io/ https://hochriess-at.reguest-hub-api.reguest.io/ *.google.com *.datareporter.eu/ https://*.seekda.com/ https://stats.g.doubleclick.net/g/collect https://region1.analytics.google.com/g/collect https://region1.google-analytics.com/;- strict-transport-security
max-age=31536000; includeSubDomains