indexo.dev

mittelstandsbund.de

.de crawl

First seen 2026-04-11 · Last seen 2026-05-20 · ok HTTP/1.1 200 700 ms crawled 2026-05-18

DE · 134.119.224.137 · AS34011 Host Europe GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Deutscher Mittelstands-Bund (DMB) e.V.
Description
Der Deutsche Mittelstands-Bund (DMB) e.V. ist der Bundesverband für kleine und mittelständische Unternehmen in Deutschland. Der DMB vertritt als unabhängiger Mittelstandsverband seit 1982 die Interessen von über 27.000 Mitgliedsunternehmen mit mehr als 600.000 Beschäftigten.
Language
de
Generator
TYPO3 CMS
Canonical
https://www.mittelstandsbund.de/

Technology

Server
nginx
CMS
Joomla
Cookie consent
  • Usercentrics

Third-party hosts loaded (3)

  • web.cmp.usercentrics.eu×2
  • code.etracker.com×1
  • plugins.flockler.com×1

Social

Contact

Phone
Address
Grafenberger Allee 128 a, 40237, Düsseldorf, Nordrhein-Westfalen, DE

Registration

Updated
2014-02-07
Name servers
  • ns1.domainkunden.de.
  • ns2.domainkunden.de.

DNS records live

NS
  • ns1.domainkunden.de
  • ns2.domainkunden.de
MX
  • 10 mx01.hornetsecurity.com
  • 20 mx02.hornetsecurity.com
  • 30 mx03.hornetsecurity.com
  • 40 mx04.hornetsecurity.com
  • 50 mittelstandsbund-de.mail.protection.outlook.com
TXT
  • e37vdducur7i0k5hluu4q0ts7t

Email authentication weak

SPF
v=spf1 ip4:134.119.224.137 include:ispgateway.de include:_spf.zimpel.de include:spf.protection.outlook.com include:secureserver.net include:spf.hornetsecurity.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Starfield Secure Certificate Authority - G2
from 2025-08-14 to 2026-08-27
Expires in 98 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.mittelstandsbund.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP uses wildcard sources
  • missing content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=(self), microphone=()
content-security-policy
frame-ancestors 'self' *.cloudflare.com *.google-analytics.com *.jquery.com *.cloudflare.com *.youtube.com *.youtu.be *.bootstrapcdn.com *.facebook.net www.googletagmanager.com *.doubleclick.net
strict-transport-security
max-age:15768000; includeSubDomains
cross-origin-opener-policy
same-origin-allow-popups
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
cross-origin

Links to (2)

Linked from (7)