hydac.com

HTML metadata

Title

Hydraulics, electronics & filters since 1963 | HYDAC

Description

Industrial processes & mobile applications – we have the solution √ Hydraulics + engineering is our business √ We are your reliable partner → Contact us!

Language

en

Generator

TYPO3 CMS

Canonical

https://www.hydac.com/en/

Translations

bg-bg
bg-mk
cs-cz
da-dk
de-at
de-ch
de-de
de-rs
en
en-ae
en-ao
en-bh
en-bw
en-ca
en-cd
en-ch
en-dk
en-gb
en-in
en-it
en-jo
en-ke
en-km
en-kw
en-lb
en-ls
en-lt
en-lv
en-mg
en-mu
en-mw
en-my
en-mz
en-na
en-no
en-om
en-pl
en-ps
en-qa
en-sa
en-sc
en-sg
en-sz
en-tr
en-tz
en-us
en-ye
en-za
en-zm
en-zw
es-ar
es-es
es-mx
fi-fi
fr-bf
fr-bj
fr-cf
fr-cg
fr-ch
fr-ci
fr-cm
fr-dz
fr-eh
fr-fr
fr-ga
fr-gh
fr-gm
fr-gn
fr-lr
fr-ly
fr-ma
fr-ml
fr-mr
fr-ne
fr-sl
fr-sn
fr-td
fr-tg
fr-tn
hu-hu
id-id
it-ch
ja-jp
ko-kr
ms-my
ms-sg
nl-be
nl-nl
no-no
pl-pl
pt-br
sk-sk
sv-se
tr-tr
zh-sg

Technology

Server: nginx

Cookie consent

OneTrust

Third-party hosts loaded (3)

cdn.cookielaw.org×1
hydac.app.baqend.com×1
www.youtube.com×1

Social

Registration

Registrar

EuroDNS S.A.

Created

1996-04-12

Expires

2027-04-13 329 days left

Updated

2026-04-07

Name servers

ns-a.eurodns.com
ns-b.eurodns.org
ns-c.eurodns.eu
ns-d.eurodns.biz

DNS records live

NS

ns-a.eurodns.com
ns-b.eurodns.org
ns-c.eurodns.eu
ns-d.eurodns.biz

MX

40 mail.hydac.com
50 mail2.hydac.com

TXT

atlassian-domain-verification=J7fmTM7KZLOtu8Jib881FGnEzseaJAkvhAs3v4ZD5C9HhieTDgLhqLtdDP5hYHqh

Email authentication strong

SPF

v=spf1 mx include:spf.de.umantis.com include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@hydac.com; ruf=mailto:dmarc-ruf@hydac.com; fo=1;

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCRKsnOGgWMk5MKtG/s1UfBzIFG0sctb8a9E1J/p+iBHOWqb2lRLHe/rh1XCSppVB6B7uXfVDPFAWGT9eR88E…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTR9jVXCa7p1qyIrSV8u4hIa30C2PXahANRqIH1oneetW8PGjAEyGAged08MqwzaH4ukSoa9GysaN2…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-11-04 to 2026-12-06

Expires in 201 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.hydac.com/en/

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: no-referrer, strict-origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: default-src *.hydac.com *.app.baqend.com *.cookielaw.org 'self'; worker-src *.hydac.com blob:; style-src *.hydac.com *.app.baqend.com *.googletagmanager.com *.googleapis.com *.google.com *.licdn.com 'self' 'unsafe-inline'; connect-src *.hydac.com *.app.baqend.com google.com *.google.de *.google.com *.doubleclick.net *.googleadservices.com *.oribi.io *.onetrust.io *.usersnap.com *.onetrust.com *.cookielaw.org *.google-analytics.com *.googleapis.com maps.googleapis.com *.ggpht.com *.googletagmanager.com *.gstatic.com *.newrelic.com *.nr-data.net *.youku.com *.youtube-nocookie.com *.youtube.com maps.gstatic.com p.adsymptotic.com bam.eu01.nr-data.net *.linkedin.com *.licdn.com *.oribi.io *.friendlycaptcha.com *.contentsquare.net *.contentsquare.com app.contentsquare.com 'self'; img-src *.hydac.com *.app.baqend.com *.google.de *.google.com *.gstatic.com *.googleadservices.com *.googleapis.com *.ggpht.com *.webtraxs.com *.usersnap.com maps.googleapis.com *.google-analytics.com *.googletagman
strict-transport-security: max-age=31536000