medelement.com
HTML metadata
Technology
- Server
- nginx
- CMS
- Nuxt
Social
Registration
- Registrar
- OnlineNIC, Inc.
- Created
- 2011-04-04
- Expires
- 2030-04-04 1415 days left
- Updated
- 2026-05-10
- Name servers
-
- ns1.hoster.kz
- ns2.hoster.kz
- ns3.hoster.kz
DNS records live
- NS
-
- ns1.hoster.kz
- ns2.hoster.kz
- ns3.hoster.kz
- MX
-
- 10 mx.yandex.net
- 11 mxa.mailgun.org
- 11 mxb.mailgun.org
- TXT
-
_jbkwcgtgv6jm1nv7887bebtebxdg8atgoogle-site-verification=KUpFg0I5A_I7MmYaQy6xuMdRaoOuuqtqWLcezzz1ql8
Email authentication weak
- SPF
-
v=spf1 include:mailgun.org include:_spf.yandex.net include:spf.unisender.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
-
- mail:
v=DKIM1; k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC2RtHfwiwuuQv5jeqY4rZ3iBETjMZJI5gsCc3b5yAxIJt85AuJ+2nHh4bA2iNBoXykxKqSBqP58h2J4…
selectors probed - mail:
Certificate (current)
RapidSSL TLS RSA CA G1
Expires in 164 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
deny- x-content-type-options
nosniff- content-security-policy
default-src 'unsafe-eval' 'unsafe-inline' https: data:; media-src 'self' data: blob: *.jivosite.com *.jivo.ru *.medelement.com medelement.com; img-src 'self' blob: data: *.adfox.ru *.jivosite.com *.jivo.ru *.medelement.com medelement.com f.doctor.kz *.medelement.com googleads.g.doubleclick.net *.googlesyndication.com *.google.com *.google.kz *.google.de *.google-analytics.com *.google-analytics.com *.google.ru *.yandex.ru yandex.ru *.yandex.net yandex.net *.yandex.com; connect-src 'self' *.medelement.com *.yandex.net yandex.ru ws: https:; object-src 'none'; frame-ancestors 'self'- strict-transport-security
max-age=63072000; includeSubDomains; preload
Links to (4)
- apple.com×2
- depositphotos.com×2
- google.com×2
- t.me×2