indexo.dev

lm-design.at

.at crawl

First seen 2026-05-31 · Last seen 2026-05-31 · ok HTTP/1.1 200 794 ms crawled 2026-06-01

AT · 213.173.72.8 · AS13292 BK-DAT Electronics e.U.

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
LM-Design – Kreativagentur
Language
de
Generator
WordPress 6.9.4
Canonical
https://lm-design.at/
Feeds

Technology

Server
Apache
CMS
WordPress 6.9.4
jQuery
3.7.1

Third-party hosts loaded (2)

  • cdn.hu-manity.co×2
  • gmpg.org×1

DNS records live

NS
  • siv.twin.at
  • tor.twin.at
MX
  • 10 web.twin.at

Email authentication strong

SPF
v=spf1 mx a:web.twin.at -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:office@lm-design.at; ruf=mailto:office@lm-design.at; fo=1; pct=100
policy: reject (enforced)
DKIM
  • default: v=DKIM1; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDD4MZLzXhs5yq5Gl45pNcdLH/xLDVcsCkgZXnPWa9WBEm5ZXRLHwvV437+8Hr3pd4RmLexES62bxR7krf3gU+e…
selectors probed

Certificate (current)

E7
from 2026-05-26 to 2026-08-24
Expires in 82 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://lm-design.at/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Linked from (1)