nimm2.de
nimm2.de
HTML metadata
Technology
Third-party hosts loaded (5)
- images.storck.com×30
- static.storck.com×15
- logfiles.storck.com×1
- www.nimm2.at×1
- www.nimm2.pl×1
Social
Registration
- Updated
- 2025-11-03
- Name servers
-
- ns5.adacor.net.
- ns.europe.adacor.net.
- ns.global.adacor.net.
DNS records live
- NS
-
- ns.europe.adacor.net
- ns.global.adacor.net
- ns5.adacor.net
- MX
-
- 10 nimm2-de.mail.protection.outlook.com
- TXT
-
QuoVadis=57416b84-3977-4509-8d5e-18cf2ecd6d4f
- Verified for
-
- Meta
- Microsoft 365
Email authentication strong
- SPF
-
v=spf1 mx include:spf.protection.outlook.com ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=reject;pct=100;rua=mailto:dmarc-reporting@storck.compolicy: reject (enforced) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2J6+Gbg/vcbY04SuqSR05hgrxu7z7k7kr2KQ4uL2jYN2xp0N62jZycHUzJl0JDro5GhkyjBnKr6Eo+…
selectors probed - selector1:
Certificate (current)
R12
Expires in 52 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
sameorigin- x-content-type-options
nosniff- content-security-policy
base-uri 'self'; default-src 'self' data: *.storck.com; script-src 'self' 'nonce-O9vwYCkMD1fpjOW9ApYhWKdKTgdynGhSb6shg6MJiPRlMBc-cKs6vA' blob: data: *.storck.com storck.piwik.pro; img-src 'self' blob: data: *.storck.com storck.piwik.pro; style-src 'self' 'unsafe-inline' 'unsafe-eval' data: *.storck.com; connect-src 'self' data: *.storck.com storck.piwik.pro; font-src 'self' data:; frame-src 'self' data: gratis-testen.eu int.fe.nimm2-der-sommer-lacht-fe.campaign-loyalty.com prod.fe.nimm2-der-sommer-lacht-fe.campaign-loyalty.com;- strict-transport-security
max-age=31536000; includeSubDomains; preload