kaf.de

.de crawl

First seen 2026-06-03 · Last seen 2026-06-04 · ok HTTP/1.1 200 969 ms crawled 2026-06-03

DE · 49.12.116.83 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title

Kinder-Akademie Fulda

Language

Generator

WordPress 7.0

Canonical

https://www.kaf.de/

Feeds

Technology

Server: nginx
CMS: WordPress 7.0
jQuery: 3.7.1

Third-party hosts loaded (1)

gmpg.org×1

Social

Contact

Phone

2026-04-05 02

Registration

Updated

2026-02-11

Name servers

dns10.nethinks.com.
dns9.nethinks.com.

DNS records live

NS

dns10.nethinks.com
dns9.nethinks.com

MX

10 mx1.fulda.de
10 mx2.fulda.de

Email authentication weak

SPF

v=spf1 mx -all

strict (-all)

DMARC

not published

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SX5+UUKsjXvQrdJ+iWU1OvYgWBGBCaX/TF9aI8vyExcZZv4U5N68sGawxIvKYj1CttXrUZ8qjRVRH…

selectors probed

Certificate (current)

R13

from 2026-05-28 to 2026-08-26

Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.kaf.de/

present

strict-transport-security
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

missing Content Security Policy

Header values

referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), geolocation=(), midi=(), camera=(), usb=(), magnetometer=(), accelerometer=(), vr=(), speaker=(), ambient-light-sensor=(), gyroscope=(), microphone=()
x-content-type-options: nosniff
strict-transport-security: max-age=15768000; includeSubDomains

Links to (6)

Linked from (2)

wirgarten-fulda.de×1
peterschaefer.net×1