kurbad-koenigstein.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-16 · ok HTTP/1.1 200 653 ms crawled 2026-05-07

DE · 85.13.128.182 · AS34788 Neue Medien Muennich GmbH

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title

Kurbad – Königstein – Königstein – Heilklimatischer Kurort im Taunus

Language

Generator

WordPress 6.9.4

Canonical

https://kurbad-koenigstein.de/

Feeds

Technology

Server: nginx
CMS: WordPress

Third-party hosts loaded (1)

gmpg.org×1

Social

Contact

Email

Registration

Updated

2026-02-20

Name servers

ns1.kgrz-ks.de.
ns2.ekom21.de.
ns3.ekom21.de.
ns4.ekom21.de.
pdns.kiv-host.de.

DNS records live

NS

ns1.kgrz-ks.de
ns2.ekom21.de
ns3.ekom21.de
ns4.ekom21.de
pdns.kiv-host.de

MX

10 mx3sgie.ekom21.de
10 mx3skas.kgrz-ks.de
10 mx4skas.kgrz-ks.de
10 mx5skas.kgrz-ks.de

Email authentication weak

SPF: v=spf1 include:_spf1.ekom21.de -all
strict (-all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

from 2026-04-05 to 2026-07-04

Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://kurbad-koenigstein.de/

present

permissions-policy

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy

Header values

permissions-policy: private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")