indexo.dev

johanneswerk.de

.de crawl

First seen 2026-04-26 · Last seen 2026-05-19 · ok HTTP/1.1 200 8022 ms crawled 2026-05-19

DE · 185.15.195.254 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Start: Evangelisches Johanneswerk - Johanneswerk
Description
Das Ev. Johanneswerk ist ein großer diakonischer Träger in NRW mit Angeboten für alte Menschen, Menschen mit Behinderung oder psychischen Erkrankungen.
Language
de
Generator
TYPO3 CMS
Canonical
https://www.johanneswerk.de/

Open Graph

title
Start: Evangelisches Johanneswerk
description
Das Ev. Johanneswerk ist ein großer diakonischer Träger in NRW mit Angeboten für alte Menschen, Menschen mit Behinderung oder psychischen Erkrankungen.

Technology

Server
Apache
Cookie consent
  • Usercentrics

Third-party hosts loaded (6)

  • app.usercentrics.eu×3
  • privacy-proxy.usercentrics.eu×3
  • api.usercentrics.eu×1
  • maps.googleapis.com×1
  • www.facebook.com×1
  • www.google.com×1

Social

Registration

Updated
2016-10-20
Name servers
  • ns01.versatel.de.
  • ns02.versatel.de.
  • ns04.versatel.de.

DNS records live

NS
  • ns01.versatel.de
  • ns02.versatel.de
  • ns04.versatel.de
MX
  • 10 mx1.techniklotsen.de
  • 10 mx2.techniklotsen.de
  • 10 mx3.techniklotsen.de
TXT
  • swisssign-check=gukKWEOFdkr5u-Yu72YjB2qCPU8
Verified for
  • Google
  • Microsoft 365

Email authentication partial

SPF
v=spf1 mx include:pi-asp.de include:_spf.etes.de ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:Postmaster_Reporting@techniklotsen.de,mailto:dmarc@2zu3bq5s.uriports.com; ruf=mailto:dmarc@2zu3bq5s.uriports.com,mailto:Postmaster_Reporting@techniklotsen.de; fo=1:d:s
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-18 to 2026-08-16
Expires in 88 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.johanneswerk.de

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
battery=(), camera=(), magnetometer=(), microphone=(), midi=(), navigation-override=()
x-content-type-options
nosniff
content-security-policy
script-src https://www.familienratgeber.de https://flockler.com https://www.youtube.com https://www.youtube-nocookie.com https://*.googleapis.com https://*.flockler.com https://*.cdninstagram.com https://*.usercentrics.eu https://*.fundraisingbox.com https://*.facebook.net https://www.facebook.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://ssl.google-analytics.com https://www.googleadservices.com https://googleads.g.doubleclick.net https://www.google.com https://bid.g.doubleclick.net 'self' 'unsafe-inline' 'unsafe-eval'; object-src 'none'
strict-transport-security
max-age=31536000

Links to (7)

Linked from (5)