k-m.de

HTML metadata

Title

König & Meyer

Description

König & Meyer steht nicht nur für Musik. Wir stehen für nachhaltige Produktion, Innovation, sichere Arbeitsplätze & für zuverlässige Produkte, die Sie gerne nutzen.

Language

de

Canonical

https://www.k-m.de/

Translations

de-de
en-gb

Open Graph

title: König & Meyer
site name: König & Meyer
description: König & Meyer steht nicht nur für Musik. Wir stehen für nachhaltige Produktion, Innovation, sichere Arbeitsplätze & für zuverlässige Produkte, die Sie gerne nutzen.

Technology

Server: Apache
CMS: WordPress

Social

Registration

Updated

2020-06-09

Name servers

ns.udag.de.
ns.udag.net.
ns.udag.org.

DNS records live

NS

ns.udag.de
ns.udag.net
ns.udag.org

MX

10 mx-01-eu-central-1.prod.hydra.sophos.com
20 mx-02-eu-central-1.prod.hydra.sophos.com

TXT

Show 10 TXT records

google-site-verification=hngMVA7P4BXbFwQvgWv11M4I4W9rDPk_3ae1AMj4P3E
H/qOPqMzdyAXBEwz3XcpFOY/wiuHKjFCJixIfGP8DeYPTyqd0YBHi8Ys19ZMlLbzKogsXaZRrmZmopQlnM3qNw==
_sitelock-domain-validation=8291ca97e9eec143
MS=ms33946626
SZfAqAAMECCz0VlI7OYtqXL0dHMjDf8Vuxvg5dluN2D/zDvuDeaQI3j2GLogCGXWU//lTfKtONeSFGMz8b1Hng==
atlassian-sending-domain-verification=54d56ab7-c474-499c-80cf-022b4556e5c2
globalsign-domain-verification=15C9CD6D6E5DBFF69F4FDA16A7B363FF
uxlFHLWgcdbMNX9RsZhhhjokv97UZ78S
sophos-domain-verification=1f903b5d0ba56c5b13701dfe4e57f730e06bbf61
atlassian-domain-verification=w8gdmzWMmcWHjQTccM6JaG7lNgJdLJEf1imz3nHHtaETQUg224MYKLLxjrBtO17g

Email authentication strong

SPF: v=spf1 a mx ip4:91.25.167.220 include:_spf.atlassian.net include:spf.crsend.com include:_spf_eucentral1.prod.hydra.sophos.com include:spf.protection.outlook.com include:spf-de.emailsignatures365.com -all
strict (-all)
DMARC: v=DMARC1;p=reject;rua=mailto:dmarc_report@k-m.de
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2026-01-19 to 2027-02-11

Expires in 268 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.k-m.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer
x-frame-options: deny
permissions-policy: accelerometer=(), autoplay=(self), camera=(), encrypted-media=(), fullscreen=(), geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(self), usb=(), interest-cohort=()
x-content-type-options: nosniff
content-security-policy: default-src 'self' *.k-m.de *.fonts.net *.google-analytics.com *.google.de *.google.com *.googleapis.com *.hotjar.com *.hotjar.io wss://ws15.hotjar.com *.facebook.net *.facebook.com *.licdn.com *.linkedin.com *.flockler.com https://api.flockler.app https://stats-api.flockler.app *.doubleclick.net *.spotify.com www.youtube.com *.instagram.com *.cdninstagram.com www.youtube-nocookie.com *.linkedin.oribi.io; img-src data: *; script-src 'self' https://www.google.com *.k-m.de *.fonts.net *.google-analytics.com *.google.de *.google.com *.googleapis.com *.hotjar.com *.hotjar.io wss://ws15.hotjar.com *.facebook.net *.facebook.com *.licdn.com *.linkedin.com *.flockler.com https://api.flockler.app https://stats-api.flockler.app *.doubleclick.net *.spotify.com www.youtube.com *.instagram.com *.cdninstagram.com www.youtube-nocookie.com *.linkedin.oribi.io 'unsafe-inline'; style-src 'self' *.k-m.de *.fonts.net *.google-analytics.com *.google.de *.google.com *.googleapis.com *.hotjar.com *.hotjar.io
strict-transport-security: max-age=31536000; includeSubDomains