indexo.dev

kv-thueringen.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1230 ms crawled 2026-05-19

DE · 78.46.28.196 · AS24940 Hetzner Online GmbH

Reputation 100/100

Classifying

Technology

Server
Apache

Registration

Updated
2013-06-13
Name servers
  • ns1.your-server.de.
  • ns3.second-ns.de.
  • ns.second-ns.com.

DNS records live

NS
  • ns.second-ns.com
  • ns1.your-server.de
  • ns3.second-ns.de
MX
  • 10 dedi3605.your-server.de

Email authentication strong

SPF
v=spf1 mx mx:mail.kv-thueringen.de -all
strict (-all)
DMARC
v=DMARC1; p=reject; pct=100
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-10 to 2026-07-09
Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.kv-thueringen.de/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
origin-when-cross-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src 'self'; form-action 'self'; img-src 'self' *.tile.openstreetmap.de data: *.kvt.de *.kv-thueringen.de www.termed.de termed.de; script-src 'self' 'unsafe-inline' 'unsafe-eval' kvt-karriere.dvinci-easy.com static.dvinci-easy.com *.kvt.de *.kv-thueringen.de api.termed.de blob:; manifest-src 'self'; style-src 'self' 'unsafe-inline' static.dvinci-easy.com; frame-src 'self' www.youtube.com *.kvt.de *.kv-thueringen.de; connect-src 'self' kvt-karriere.dvinci-easy.com *.kvt.de api.termed.de *.kv-thueringen.de

Linked from (4)