indexo.dev

nanu-nana.de

.de crawl

First seen 2026-05-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 6571 ms crawled 2026-05-20

DE · 109.71.72.174 · AS47447 23M GmbH

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
NANU-NANA | suchen stöbern finden | Der Onlineshop
Description
Nanu-Nana Onlineshop – entdecke Deko, Geschenke und Wohnaccessoires für dein Zuhause. Finde kreative Ideen für jeden Anlass. ⇒ jetzt stöbern!
Language
de
Canonical
https://www.nanu-nana.de
Translations
  • de ×2
  • cs

Open Graph

url
https://www.nanu-nana.de/home-new
title
NANU-NANA | suchen stöbern finden | Der Onlineshop (DE)
description
Nanu-Nana Onlineshop – entdecke Deko, Geschenke und Wohnaccessoires für dein Zuhause. Finde kreative Ideen für jeden Anlass. ⇒ jetzt stöbern!

Technology

Server
nginx
CMS
Gatsby

Third-party hosts loaded (1)

  • www.nanu-nana.at×1

Social

Contact

Email
Phone

Registration

Updated
2024-04-12
Name servers
  • a.ns14.net.
  • b.ns14.net.
  • c.ns14.net.
  • d.ns14.net.

DNS records live

NS
  • a.ns14.net
  • b.ns14.net
  • c.ns14.net
  • d.ns14.net
MX
  • 10 mxtls.expurgate.net
  • 50 mail.nanu-nana.de
TXT
  • MS=E2558B86E0CE9051F15ADEA38D8827A5757E9D5D
  • duo_sso_verification=SD3UCrbWoAUCnEQb2pUDozwW3KGewFTpBDrE6bTvownkanNHqz2SfNezH68aecK4
Verified for
  • Atlassian

Email authentication partial

SPF
v=spf1 a ip4:80.149.209.152/29 ip4:62.116.128.0/19 ip6:2001:4178::/29 include:_spf.expurgate.net include:_spf.rexx-suite.com include:mailbox.org -all
strict (-all)
DMARC
v=DMARC1; p=none; sp=none; pct=100; fo=1
policy: none (monitoring only) · sp=none
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-04-28 to 2026-07-27
Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.nanu-nana.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src *.signalize.com fonts.gstatic.com data: data: 'self' 'unsafe-inline'; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cleverreach.com 'self' 'unsafe-inline'; frame-ancestors https://*.etracker.com *.etracker.com *.etracker.de 'self'; frame-src bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com https://www.google.com/recaptcha/ *.google.com https://www.googletagmanager.com/ *.pay1.de *.jsctool.com *.trbo.com *.pinterest.com *.pinimg.com secure.pay1.de payments.amazon.de jsctool.com www.jsctool.com js.playground.klarna.com *.tokenization.secure.payone.com 'self' 'unsafe-inline'; img-src widgets.magentocommerce.com data: googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net www.googleadservices.com www.google-analytics.com analytics.google.com www.googletagmanager.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com vali
strict-transport-security
max-age=31536000

Links to (4)

Linked from (1)