indexo.dev

lottosachsenanhalt.de

.de crawl

First seen 2026-04-14 · Last seen 2026-05-20 · ok HTTP/1.1 200 1330 ms crawled 2026-05-07

DE · 62.159.142.141 · AS3320 Deutsche Telekom AG

Reputation 100/100

Classifying

HTML metadata

Title
LOTTO Sachsen-Anhalt - bequem & sicher Lotto online spielen
Description
Spielen Sie legal beim Original in Sachsen-Anhalt. LOTTO Sachsen-Anhalt, Ihr offizieller Anbieter für Lotto spielen im Internet. Sicher und seriös.
Language
de
Canonical
https://www.lottosachsenanhalt.de/

Open Graph

url
https://www.lottosachsenanhalt.de/
title
LOTTO Sachsen-Anhalt - bequem & sicher online Lotto spielen
description
Spielen Sie legal beim Original in Sachsen-Anhalt. LOTTO Sachsen-Anhalt ist Ihr offizieller Anbieter für Lotto spielen im Internet - sicher und seriös.

Technology

CMS
Gatsby

Third-party hosts loaded (2)

  • cdn.jsdelivr.net×1
  • code.etracker.com×1

Social

Registration

Updated
2019-11-04
Name servers
  • ns1.arcor-ip.de.
  • ns2.arcor-ip.de.
  • ns3.arcor-ip.de.

DNS records live

NS
  • ns1.arcor-ip.de
  • ns2.arcor-ip.de
  • ns3.arcor-ip.de
TXT
Show 5 TXT records
  • _s5oocxiifwrm90br1l0igwwxapzfq1g
  • _704dkr579yi9fn1sn0rw6lwt8hdu1fr
  • _s09y6ri7qz5vn2ujwzqz5yl1vd8jnud
  • _04xmcvy03dco0zks9g0f2l5366fh4mt
  • _71y5jokwa57qtuylpf3lpwu8gmfqm93
Verified for
  • Apple
  • Google

Email authentication no MX

SPF
v=spf1 ip4:193.158.231.62 ip4:193.158.231.61 ip4:80.86.178.1 a mx a:smtp.avxn.de ?all
neutral (?all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Thawte EV RSA CA G2
from 2025-11-06 to 2026-11-06
Expires in 169 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.lottosachsenanhalt.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=*,autoplay=*,camera=*,clipboard-read=*,clipboard-write=*,cross-origin-isolated=*,display-capture=*,document-domain=*,encrypted-media=*,fullscreen=*,geolocation=*,gyroscope=*,hid=*,idle-detection=*,keyboard-map=*,magnetometer=*,microphone=*,midi=*,payment=*,picture-in-picture=*,publickey-credentials-get=*,screen-wake-lock=*,serial=*,speaker-selection=*,sync-xhr=*,usb=*,web-share=*,xr-spatial-tracking=*
x-content-type-options
nosniff
content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval' 'wasm-unsafe-eval' https://cdn.jsdelivr.net/npm/; connect-src *; img-src * data: blob:; frame-src *; style-src * 'unsafe-inline'; worker-src * blob:; child-src blob:;
strict-transport-security
max-age=63072000; includeSubDomains

Links to (8)

Linked from (14)