nds-verlag.de
nds-verlag.de
HTML metadata
Technology
- Server
- Apache
- CMS
- Gatsby
Contact
Registration
- Updated
- 2015-01-09
- Name servers
-
- ns1.first-ns.de.
- robotns2.second-ns.de.
- robotns3.second-ns.com.
DNS records live
- NS
-
- ns1.first-ns.de
- robotns2.second-ns.de
- robotns3.second-ns.com
- MX
-
- 10 mxpool.de2.hostedoffice.ag
Email authentication weak
- SPF
-
v=spf1 include:hostedoffice.ag +a +mx +ip4:178.63.25.237 +ip4:5.253.0.74 +ip6:2a09:4ec0::269 +ip4:162.55.182.58 ?allneutral (?all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 45 days
HTTP security headers
- present
-
- content-security-policy-report-only
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- missing Content Security Policy
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, SAMEORIGIN- x-content-type-options
nosniff- content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflo