online-now.de
HTML metadata
Technology
- Server
- Apache
- CMS
- Joomla
Social
Contact
Registration
- Updated
- 2024-04-10
- Name servers
-
- ns1.online-now.de.
- ns7.online-now.de.
- ns9.online-now.de.
DNS records live
- NS
-
- ns1.online-now.de
- ns7.online-now.de
- ns9.online-now.de
- MX
-
- 10 mxtls.expurgate.net
- TXT
-
google-site-verification=zbb-Og13yLDMkwm7-AAyv4gySd4DCx1WI54xY1sHNnw
Email authentication strong
- SPF
-
v=spf1 a mx include:_spf.online-now.de include:secureserver.net include:_spf.mailrelay.rrpproxy.net ~allsoftfail (~all) - DMARC
-
v=DMARC1;p=quarantine;adkim=s; aspf=s;ruf=mailto:dmarc@online-now.de;rua=mailto:dmarc@online-now.de;fo=1policy: quarantine - DKIM
-
- default:
v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1dpB+qZ2mipnCBlisWb3r/+kw/rUicN8krrUphU+Dl30gxLXhU2DgeeS06ck+wKcro5ZZdPSA0pLPaF9zVP+…
selectors probed - default:
Certificate (current) wrong cert
R12
Expires in 18 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(), microphone=(), camera=(), payment=()- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self'; base-uri 'self'; form-action 'self';, style-src 'self' 'unsafe-inline' https://fonts.googleapis.com/; default-src 'self' data: https://piwik.online-now.de/ https://ssl.google-analytics.com/ https://maps.googleapis.com/ https://maps.gstatic.com/ https://fonts.gstatic.com; script-src 'unsafe-eval' 'self'; script-src-attr 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https://ssl.google-analytics.com/ https://piwik.online-now.de/ https://maps.googleapis.com/ https://fonts.googleapis.com/; script-src-attr 'self' 'unsafe-inline'- strict-transport-security
max-age=15768000; includeSubDomains