ivarcs.cz
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Google Tag Manager
- Ads
-
- Meta Pixel
Third-party hosts loaded (3)
- www.googletagmanager.com×2
- connect.facebook.net×1
- ivarcs.searchready.cz×1
Social
Contact
- Phone
DNS records live
- NS
-
- ns1.regzone.cz
- ns1.regzone.de
- ns1.regzone.info
- MX
-
- 10 mail.ivarcs.cz
- 20 mail2.ivarcs.cz
- Verified for
-
- Meta
Email authentication partial
- SPF
-
v=spf1 mx ip4:31.15.13.26 ip4:213.109.164.15 include:spf.active24.com include:sparkpostmail.com ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; rua=mailto:7l7d85gn1d@dmarc-reports.ecomailapp.com; fo=1policy: none (monitoring only) - DKIM
-
- mail:
v=DKIM1;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDD37TlJBQw2nyvwA+GAshVVPzzvhHDfCxG9AK3nXoOe9aM5xUcNYLTHd32WX7oXT8FqVzi+Zy5NIEsHu4i0tncKcwVyJ…
selectors probed - mail:
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 150 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), ambient-light-sensor=(), battery=(), camera=(), display-capture=(), document-domain=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()- x-content-type-options
nosniff- content-security-policy
script-src 'nonce-jmDU0bghal6rbu4AIyeVnA==' 'strict-dynamic' * 'unsafe-inline'; object-src 'none'; base-uri 'self';- strict-transport-security
max-age=31536000; includeSubDomains