kippenheim.de
HTML metadata
Technology
- Server
- Apache
Third-party hosts loaded (5)
- cm09.cmcitymedia.de×14
- components.cross-7.de×2
- exchange.cmcitymedia.de×2
- publish1.cmcitymedia.de×1
- static.cross-7.de×1
Social
Contact
- Phone
DNS records live
- NS
-
- k1z01s003.kivbf.de
- k1z01s004.kivbf.de
- ns.frei.net
- MX
-
- 10 mx6.kvnbw.de
- 10 mx7.kvnbw.de
- 10 mx8.kvnbw.de
- 10 mx9.kvnbw.de
- TXT
-
apple-domain-verification=xYKnRC70nQHIPSiW
Email authentication partial
- SPF
-
v=spf1 a mx include:spf.protect.kvnbw.de ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=nonepolicy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 83 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
microphone=(), camera=(), payment=()- x-content-type-options
nosniff, nosniff- content-security-policy
script-src 'self' 'unsafe-inline' https://*.cross-7.de https://*.cmcitymedia.de; style-src 'self' 'unsafe-inline' https://*.cross-7.de https://*.cmcitymedia.de;- strict-transport-security
max-age=31536000; includeSubDomains; preload