kita-st-josef-bitterfeld.de

.de crawl

First seen 2026-04-23 · Last seen 2026-05-17 · ok HTTP/1.1 200 9611 ms crawled 2026-05-17

DE · 81.169.145.86 · AS6724 Strato GmbH

Reputation 100/100

Classifying

HTML metadata

Title

Kita St. Josef

Language

Canonical

https://kita-st-josef-bitterfeld.de/

Feeds

Kita St. Josef » Feed RSS
Kita St. Josef » Kommentar-Feed RSS

Technology

Server: Apache
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×2
gmpg.org×1

Registration

Updated

2012-12-21

Name servers

docks14.rzone.de.
shades19.rzone.de.

DNS records live

NS

docks14.rzone.de
shades19.rzone.de

MX

5 smtpin.rzone.de

Email authentication strong

SPF: v=spf1 redirect=_spf.strato.com
no all qualifier
DMARC: v=DMARC1;p=reject;
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-09-20 to 2026-09-21

Expires in 122 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://kita-st-josef-bitterfeld.de/

present

strict-transport-security
content-security-policy
content-security-policy-report-only
x-frame-options
x-content-type-options
referrer-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;frame-ancestors 'self' ;
strict-transport-security: max-age=63072000; includeSubDomains;preload
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: same-origin
content-security-policy-report-only: img-src 'self' data: https://kirche-osterzgebirge.de blob: https://really-simple-ssl.com http://www.kita-st-josef-bitterfeld.de http://kita-st-josef-bitterfeld.de https://secure.gravatar.com https://ts.w.org https://s.w.org https://ps.w.org; default-src 'self'; script-src 'self' 'unsafe-inline' https://connect.facebook.net 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://connect.facebook.net ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com ; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com ; font-src 'self' https://fonts.gstatic.com data:; frame-src 'self' blob:; worker-src 'self' blob:; report-uri https://kita-st-josef-bitterfeld.de/wp-json/really-simple-security/v1/csp?rsssl_apitoken=390918393;