indexo.dev

mutuacesarepozzo.org

.org crawl

First seen 2026-06-01 · Last seen 2026-06-03 · ok HTTP/1.1 200 381 ms crawled 2026-06-01

DE · 167.235.219.177 · AS24940 Hetzner Online GmbH

Reputation 100/100

Classifying

HTML metadata

Title
Società Nazionale di Mutuo Soccorso Cesare Pozzo ETS
Description
CesarePozzo: piani di assistenza sanitaria con rimborsi per ticket, malattia e ricoveri. L'alternativa no profit all'assicurazione
Language
en

Open Graph

url
https://mutuacesarepozzo.org
title
Società Nazionale di Mutuo Soccorso Cesare Pozzo ETS

Technology

CMS
Next.js
JS framework
Next.js

Third-party hosts loaded (2)

  • cdn.cesarepozzo.nxtcloud.it×16
  • bnr.elmobot.eu×1

Social

Contact

Phone

Registration

Registrar
OVH sas
Created
2008-07-09
Expires
2026-07-09 34 days left
Updated
2026-04-24
Name servers
  • dns14.ovh.net
  • ns14.ovh.net

DNS records live

NS
  • dns14.ovh.net
  • ns14.ovh.net
MX
  • 10 mx1.mail.ovh.net
  • 20 mx2.mail.ovh.net
  • 30 mx3.mail.ovh.net
  • 40 mx4.mail.ovh.net
  • 5 mx0.mail.ovh.net
TXT
  • trustpilot-one-time-verification-id=7826d90f-6531-457f-8ed5-27bfc8ffd90f
  • old_facebook-domain-verification=pqgchms17kjt32t4ba9o4on166e6ok
Verified for
  • Google
  • Meta

Email authentication strong

SPF
v=spf1 include:mx.ovh.com include:_spf.arubabusiness.it ip4:139.99.134.115/32 mx a ~all
softfail (~all)
DMARC
v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:dmarc@dmarcmonitor.uriports.com; ruf=mailto:dmarc@dmarcmonitor.uriports.com; fo=1; adkim=r; aspf=r; pct=100
policy: quarantine · sp=quarantine
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-05-15 to 2026-11-30
Expires in 178 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 95/100 Checked live page: https://mutuacesarepozzo.org/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://js.stripe.com https://www.googletagmanager.com https://www.google.com https://www.gstatic.com https://bnr.elmobot.eu https://www.recaptcha.net https://www.google.com/recaptcha https://contattaim01.mutuacesarepozzo.it; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://contattaim01.mutuacesarepozzo.it; img-src 'self' data: https: https://firebasestorage.googleapis.com https://images.unsplash.com https://cdn.cesarepozzo.nxtcloud.it https://mutuacesarepozzo.org; font-src 'self' data: https://fonts.gstatic.com; connect-src 'self' https://api.stripe.com https://www.google-analytics.com https://stage-api.pozzo.nxtcloud.it https://api.pozzo.nxtcloud.it https://firebasestorage.googleapis.com https://cns.elmobot.eu https://contattaim01.mutuacesarepozzo.it https://www.privacylab.it; frame-src 'self' https://js.stripe.com https://www.spiditalia.it https://firebasestorage.googleapis.com https://www.recap
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (7)

Linked from (4)