loewen-kundenportal.de
HTML metadata
Technology
- Server
- nginx
- Cookie consent
-
- Usercentrics
Third-party hosts loaded (2)
- app.usercentrics.eu×1
- privacy-proxy.usercentrics.eu×1
Contact
Registration
- Updated
- 2019-09-05
- Name servers
-
- a.ns14.net.
- b.ns14.net.
- c.ns14.net.
- d.ns14.net.
DNS records live
- NS
-
- a.ns14.net
- b.ns14.net
- c.ns14.net
- d.ns14.net
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 31 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self'; script-src 'self' 'nonce-2xeUHcw5-lIq01mxmdZwrGCZsJpNmRPhxrqxG92Kz21kS0jgtO89ug' 'unsafe-eval' 'strict-dynamic' https://*.usercentrics.eu https://*.googletagmanager.com https://*.hotjar.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://files.crsend.com https://*.usercentrics.eu https://www.loewen.de https://*.google-analytics.com https://*.googletagmanager.com https://*.googleapis.com https://*.gstatic.com https://*.google.com https://*.googleusercontent.com https://*.hotjar.com https://medien.loewen-kundenportal.de; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://*.novoline.de https://login.loewen-kundenportal.de https://*.usercentrics.eu https://*.google.com; style-src-elem 'self' 'nonce-2xeUHcw5-lIq01mxmdZwrGCZsJpNmRPhxrqxG92Kz21kS0jgtO89ug' 'unsafe-inline' https://fonts.googleapis.com 'report-sample'; frame-ancestors 'self'; font-src 'self' https