matejovopekarstvi.cz — domain check, WHOIS, DNS & reputation

HTML metadata

Title: Matějovo pekařství | Matějovo Pekařství
Language: cs

Technology

Server: nginx
CMS: Gatsby

Analytics

Google Tag Manager

Third-party hosts loaded (3)

scontent-waw2-2.xx.fbcdn.net×9
scontent-waw2-1.xx.fbcdn.net×1
www.googletagmanager.com×1

Social

Contact

Email

Phone

DNS records live

NS

ns.forpsi.cz
ns.forpsi.it
ns.forpsi.net

MX

0 mail.matejovopekarstvi.cz
50 matejovopekarstvi-cz.mail.protection.outlook.com

Verified for

Microsoft 365

Email authentication partial

SPF: v=spf1 a mx ip4:80.188.179.170 include:spf.protection.outlook.com include:spf.mailkit.eu ~all
softfail (~all)
DMARC: v=DMARC1; p=none; rua=mailto:dmarc-rua@mailkit.com;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

ZeroSSL RSA DV SSL CA 2

from 2026-05-21 to 2026-08-20

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.matejovopekarstvi.cz/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: DENY
permissions-policy: accelerometer=(), autoplay=(), camera=(), display-capture=(), encrypted-media=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: connect-src 'self' *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndication.com *.g.doubleclick.net *.google.com *.google.cz *.cookiehub.net *.facebook.com; default-src 'self' www.google.com/recaptcha/ www.googletagmanager.com www.youtube.com/embed/ www.google.com/maps/ *.doubleclick.net *.issuu.com; frame-src www.google.com/maps/ www.google.com/recaptcha/ e.issuu.com/; img-src 'self' data: *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.googlesyndication.com *.g.doubleclick.net *.google.com *.google.cz *.doubleclick.net *.facebook.com *.cdninstagram.com api.mapbox.com *.seznam.cz *.fbcdn.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.google.com/recaptcha/ www.gstatic.com/recaptcha/ *.googletagmanager.com *.g.doubleclick.net *.cookiehub.net cdn.cookiehub.eu *.google-analytics.com *.facebook.net *.seznam.cz; font-src 'self' fonts.gstatic.com *.typekit.net; style-src 'self' 'unsafe-inline' fonts.googleapis.com *.typekit.net
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin; report-to="default"
cross-origin-embedder-policy: unsafe-none; report-to="default"
cross-origin-resource-policy: same-origin

Links to (2)

instagram.com×1
facebook.com×1

Linked from (1)

contimex.cz×1