ilgiorno.it

.it crawl

First seen 2026-05-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 2432 ms crawled 2026-05-20

US · 104.26.5.192 · AS13335 Cloudflare, Inc.

Reputation 100/100

Classifying

HTML metadata

Title

Il Giorno | Tutte le ultime notizie in tempo reale dalla Lombardia

Language

Canonical

https://www.ilgiorno.it/

Feeds

RSS 2.0 RSS

Open Graph

url: https://www.ilgiorno.it/
title: Il Giorno | Tutte le ultime notizie in tempo reale dalla Lombardia
site name: Il Giorno

Technology

CDN: Cloudflare
CMS: Next.js
JS framework: Next.js

Analytics

Cloudflare Insights

Third-party hosts loaded (8)

www.dailymotion.com×5
cdn-gl.imrworldwide.com×1
cdn.cxense.com×1
cl-eu2.k5a.io×1
cmp-assets.pubtech.ai×1
cmp.pubtech.ai×1
guidatv.quotidiano.net×1
static.cloudflareinsights.com×1

Contact

Phone

12741650159

DNS records live

NS

audrey.ns.cloudflare.com
bryce.ns.cloudflare.com

MX

5 monrif.esvacloud.com
5 monrif2.esvacloud.com

TXT

_oqyggwivhtvd5w06etm7h8nadi9odmo
_qsnhreohpjry8nhvzd07lq3d2jcppyb

Verified for

Google
Meta

Email authentication strong

SPF

v=spf1 ip4:80.207.39.96/28 ip4:54.77.55.198 ip6:2607:f8b0:4864:20::/64 mx include:mailgun.org include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:dmarc@ilgiorno.it, mailto:dmarc@bimilogo.uriports.com; ruf=mailto:dmarc@ilgiorno.it, mailto:dmarc@bimilogo.uriports.com; adkim=r; aspf=r; fo=1; pct=100

policy: quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqati8dWWhfyPHanLU7yjT5GZiIIraFpenboV2YFUpEVstoMbLUmMhFL9LBPL6B4ajVmkQSDuWorGd…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

WE1

from 2026-04-14 to 2026-07-13

Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.ilgiorno.it/

present

content-security-policy
x-content-type-options
permissions-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy

Header values

permissions-policy: unload=()
x-content-type-options: nosniff
content-security-policy: default-src *; script-src 'unsafe-inline' 'unsafe-eval' *; worker-src 'self' 'unsafe-eval' blob: http: https: ; style-src 'unsafe-inline' *; img-src http: https: data: ; font-src http: https: data: blob: ; media-src * blob: