indexo.dev

ikomstiftland.de

.de crawl

First seen 2026-05-27 · Last seen 2026-05-31 · ok HTTP/1.1 200 940 ms crawled 2026-05-30

DE · 81.169.145.78 · AS6724 Strato GmbH

Reputation 100/100

Classifying

HTML metadata

Title
IKom Stiftland – interkommunaler Zweckverband
Description
IKom Stiftland ist ein Zweckverband in dem zehn Städte und Gemeinden des östlichen Landkreises Tirschenreuth interkommunal zusammenarbeiten. Mitglieder sind Tirschenreuth, Mitterteich, Waldsassen, Bärnau, Plößberg, Konnersreuth, Mähring, Neualbenreuth, Leonberg und Pechbrunn.
Language
de-DE
Generator
TYPO3 CMS
Canonical
https://www.ikomstiftland.de/
Translations
  • cs
  • de

Technology

Server
Apache
PHP
8.2.31 security-only

Third-party hosts loaded (1)

  • static.xx.fbcdn.net×1

Social

Registration

Updated
2017-04-20
Name servers
  • docks14.rzone.de.
  • shades18.rzone.de.

DNS records live

NS
  • docks14.rzone.de
  • shades18.rzone.de
MX
  • 10 mx01.lkr-tir.de
  • 20 mx02.lkr-tir.de

Email authentication strong

SPF
v=spf1 mx ip4:217.7.138.151 ip4:217.7.138.190 ip4:217.7.138.188 ip4:217.7.138.189 ~all
softfail (~all)
DMARC
v=DMARC1;p=reject;
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2025-06-08 to 2026-06-30
Expires in 29 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.ikomstiftland.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
sameorigin
permissions-policy
accelerometer=(), autoplay=(), camera=(), document-domain=(), encrypted-media=(), fullscreen=*, geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=*, publickey-credentials-get=(), sync-xhr=(), usb=(), screen-wake-lock=(), xr-spatial-tracking=()
x-content-type-options
nosniff
content-security-policy
base-uri 'self'; default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: *.bugherd.com *.doubleclick.net *.youtube.com *.facebook.net *.googleadservices.com *.googletagmanager.com *.google-analytics.com *.googleapis.com *.cloudfront.net; frame-src 'self' blob: *.bugherd.com *.google.com *.youtube.com *.youtube-nocookie.com; img-src 'self' data: *.facebook.com *.fbcdn.net *.google.com *.google.de *.amazonaws.com *.cloudfront.net img.youtube.com maps.gstatic.com *.googleapis.com *.google-analytics.com *.googletagmanager.com; style-src 'self' 'unsafe-inline' *.googleapis.com *.cloudfront.net *.google-analytics.com *.googletagmanager.com; font-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.cloudfront.net fonts.gstatic.com *.bugherd.com ; worker-src *.google-analytics.com *.googletagmanager.com *.youtube.com *.youtube-nocookie.com; object-src 'none'; connect-src 'self' *.bugsnag.com wss://ws.pusherapp.com *.pusherapp.com *.bugherd.com *.pusher.com *.googleapis.com
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (6)

Linked from (6)