lebenshilfswerk-waren.de
HTML metadata
Technology
- Server
- Apache
- Cookie consent
-
- Usercentrics
Third-party hosts loaded (4)
- privacy-proxy.usercentrics.eu×3
- app.usercentrics.eu×1
- code.jquery.com×1
- maps.google.com×1
Contact
- Phone
Registration
- Updated
- 2017-09-26
- Name servers
-
- pns01.dcsix.net.
- pns02.dcsix.net.
- pns03.dcsix.net.
- pns04.dcsix.net.
DNS records live
- NS
-
- pns01.dcsix.net
- pns02.dcsix.net
- MX
-
- 10 mail.nord-vision.de
- Verified for
-
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 mx include:mail.nord-vision.de ~allsoftfail (~all) - DMARC
-
v=DMARC1; p=none; adkim=s; aspf=s;policy: none (monitoring only) - DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 35 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src 'self' https://*.usercentrics.eu https://*.google.com https://*.googleapis.com https://*.gstatic.com https://code.jquery.com https://login.insecia.com; script-src 'self' https://*.usercentrics.eu https://*.googleapis.com https://*.gstatic.com https://*.google.com https://code.jquery.com https://login.insecia.com 'unsafe-inline'; style-src 'self' 'unsafe-inline' https://*.usercentrics.eu https://*.google.com https://*.googleapis.com https://*.gstatic.com https://code.jquery.com https://login.insecia.com; img-src 'self' 'unsafe-inline' https://*.usercentrics.eu https://*.google.com https://*.googleapis.com https://*.gstatic.com https://code.jquery.com https://login.insecia.com data:;- strict-transport-security
max-age=31536000; includeSubDomains