kgal.de
HTML metadata
Technology
- Server
- nginx
- CMS
- WordPress
Third-party hosts loaded (2)
- gmpg.org×1
- hb.wpmucdn.com×1
Social
Contact
- Phone
Registration
- Updated
- 2019-07-05
- Name servers
-
- ns1.sbs-inter.net.
- ns2.sbs-inter.net.
- ns.sbs.de.
DNS records live
- NS
-
- ns.sbs.de
- ns1.sbs-inter.net
- ns2.sbs-inter.net
- MX
-
- 10 mx01.kgal.de
- 10 mx02.kgal.de
- TXT
-
Show 20 TXT records
swisssign-check=awei2uPDA_DVmBQJw65GtEafr5Icisco-ci-domain-verification=487253bd5083cd33c59377d0089def923b38c660b1b85a65d0e2bc604b1eada8pAr64gYlI5ZEEbtABa8+81V0Tttz8f1eDCV6E09hTJ/DdKqi385n3mVfcv2eV2bPSdcvObgEepHQXKpqvdE+dw==ms-domain-verification=4aa39100-1d88-444e-8abb-16efeed79bebta5iel76rk0tj59rjtvurfgqr0uKxjECTWiyqQYUn8bTP3bc1XjkySF3CTMS=ms42052404Wga02fLvJWawQ1tC54aGwEEEJEgRZH0PVJUbzEqnJ2DCZTcJmuSwxDXz3zLHpQTvU7qRL5ZUyaekqzCMC17ryMsmS2AqridkMqjkJquKkj1St1JuzSipa3Y0jWYhKJHKxFVGcyPA5HDYFS8SkeUj0wneGJrggrgUJSd5SfLM64f8B1e8EKPMtcfXHjY0Pv3d0VnOmE5gKIvLow7jwucN0r9knyebBfL8qEIzAPmV5011iWc65boe41uZEtFnLqyKE7b1MXW3CH+DZ2bdR+gRNg==2QFJ9pGtYVyG4NdCMWBfTZQH3XRgq0eLv=spf1 ip4:194.8.120.224/27 ip4:129.185.167.192/27 ip4:217.108.10.20 ip4:195.200.255.124 ip4:80.169.246.90 ip4:213.27.251.163 ip4:212.110.112.135 include:_spf.senders.scnem.com include:_spf.salesforce.com include:spf.protection.outlook.com ip4:91.207.162.20 ip4:91.207.162.23 ip4:62.55.182.68 a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com mx -allG9dDD8Bx2ErHurD0kK9swKc9bdwavEr5Qzvs3WpWVqmCuqr9X8AKMDCvnxJd3jw7mindmanager-verification=225e15bcc17ffce6f78cd27ecfad8a2f346b40779fae4f9f822561aa9c29b695YAi1xMFLFW7WeQKZkmFH0uUa32yXzNwc
Certificate (current)
Sectigo Public Server Authentication CA DV R36
Expires in 315 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
Header values
- referrer-policy
origin-when-cross-origin, same-origin- x-frame-options
sameorigin, SAMEORIGIN- permissions-policy
accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), usb=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.google-analytics.com snap.licdn.com *.googletagmanager.com *.googleapis.com cdn.jsdelivr.net cdn.amcharts.com; style-src 'self' 'unsafe-inline' *.googleapis.com cdn.jsdelivr.net fonts.bunny.net; img-src 'self' blob: data: translate.google.com wpmudev.com dineshkarki.com.np *.google-analytics.com *.gstatic.com px.ads.linkedin.com *.googleapis.com *.w.org; font-src 'self' data: *.gstatic.com *.googleapis.com cdn.jsdelivr.net fonts.bunny.net; connect-src 'self' *.google-analytics.com *.googletagmanager.com px.ads.linkedin.com *.googleapis.com; frame-src 'self' kgal.pi-asp.de kgal.my.salesforce-sites.com kgal--int.sandbox.my.salesforce-sites.com kgal--stage.sandbox.my.salesforce-sites.com wp.freemius.com; object-src 'none'; media-src 'self' https://www.kgal.de/wp-content/uploads/; base-uri 'self'; form-action 'self'; worker-src 'self' blob:; upgrade-insecure-requests;- strict-transport-security
max-age=2592000, max-age=63072000; includeSubdomains; preload