hypovbg.at
hypovbg.at
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Fathom
- Cookie consent
-
- Cookiebot
Third-party hosts loaded (3)
- media.ffycdn.net×28
- cdn-eu.usefathom.com×1
- consent.cookiebot.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- nsi1.arz.at
- nsi2.arz.at
- MX
-
- 10 mx01.arz.at
- 10 mx02.arz.at
- TXT
-
Show 7 TXT records
kks3z6dx8gvdlg35dhyds426q1lpqvzrapple-domain-verification=Hu9Tx389Jo1t4O9bgoogle-site-verification=seuOAT7InntnBdYXlbG0ZX-tlYuiHGirTDtbReNL3KYcisco-ci-domain-verification=5c970e63be2d44fd6ee3c45f17bdeab9d6b822aca7ccc228df76af921cdf3eacgoogle-site-verification=IVNklLz2h-EFZSnsPSGCxYaWP7M7vkBBDMe_GXBjSKgswisssign-check=59C1YJaYic9XXzCaqkrpZxEuTjEMS=ms31804475
Email authentication strong
- SPF
-
v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=reject; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com;policy: reject (enforced) - DKIM
-
- default:
v=DKIM1; k=rsa; h=sha256; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA120YqhZkIUZWXS3u1nBaBoLz22YMMhE2ElmqEXulfgBA9wSjaja/GXZp9UwpZG65h+Hb… - selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRG6UaZPpkpK35HygyDHo6fWLqQI/jiEGSBAPF+RV7cNA88jinf0bUIRlj5pwIOICVm822Ay2XIBXX… - selector2:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEktPZD5FrwZDJf8NXTWgp1IaTewpV0Mxe8FWLa4qEybgNGFtd9wJQlEB9RHC3j25Nm+HteJtv44OY…
selectors probed - default:
Certificate (current)
GeoTrust TLS RSA CA G1
Expires in 87 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'nonce-XTYdxseCW0Vq5j8t76120rHquKcOZgftpAKz0_LMumSTPbQuVmHUxw' https://analytics.arz.at https://cdn-eu.usefathom.com https://consent.cookiebot.com https://consentcdn.cookiebot.com https://pp.hypovbg.at https://www.googletagmanager.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://analytics.arz.at https://cdn-eu.usefathom.com https://data.hypovbg.at https://imgsct.cookiebot.com https://maps.gstatic.com https://media.ffycdn.net https://maps.googleapis.com https://news.hypovbg.at https://pagead2.googlesyndication.com https://www.google.at https://www.google.de https://www.google.com https://www.googleadservices.com https://www.googletagmanager.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://consentcdn.cookiebot.com https://kurse.banking.co.at/responsive/019/ https://kurse.banking.co.at/responsive-test/019/ https://www.googletagman- strict-transport-security
max-age=31536000; includeSubDomains