jamieson.at
jamieson.at
HTML metadata
Technology
- Server
- nginx
- Stack
- PHP
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (5)
- static.jamieson.sk×31
- fonts.googleapis.com×1
- maxcdn.bootstrapcdn.com×1
- www.googletagmanager.com×1
- www.jamieson.sk×1
Social
DNS records live
- NS
-
- ns.wisible.sk
- ns2.wisible.sk
- MX
-
- 10 next.wisible.sk
Email authentication weak
- SPF
-
v=spf1 a include:spf.wisible.sk -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
E7
Expires in 33 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self'; img-src 'self' https: data: http://*.cream.sk https://www.googletagmanager.com https://*.google-analytics.com https://*.googletagmanager.com https://*.g.doubleclick.net https://*.google.com https://*.google.sk https://*.google.cz https://*.facebook.com https://connect.facebook.net https://*.clarity.ms https://c.bing.com *.tawk.to cdn.jsdelivr.net tawk.link s3.amazonaws.com https://matomojs.trackify.info https://analytics.mlmedia.sk https://widgets.getsitecontrol.com https://im9.cz https://*.seznam.cz https://*.imedia.cz https://widget.packeta.com https://*.packeta.com https://*.ytimg.com https://*.ggpht.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://*.googletagmanager.com https://*.g.doubleclick.net https://ssl.google-analytics.com https://www.google-analytics.com https://*.googleadservices.com https://connect.facebook.net https://*.s3.us-east-2.amazonaws.com https://*.clarity.ms *.tawk.to cdn.jsdelivr.net s3.amazonaws.- strict-transport-security
max-age=31536000