indexo.dev

optimalnachhilfe.at

.at crawl

First seen 2026-05-12 · Last seen 2026-05-12 · ok HTTP/1.1 200 268 ms crawled 2026-05-18

US · 34.110.214.206 · AS396982 Google LLC

Reputation 84/100 permissive spf dmarc monitor-only

Classifying

HTML metadata

Title
Nachhilfe und Prüfungsvorbereitung in Österreich | Nachhilfe
Generator
Drupal 7 (https://www.drupal.org)
Canonical
https://optimalnachhilfe.at/

Open Graph

url
https://optimalnachhilfe.at/
title
Nachhilfe und Prüfungsvorbereitung in Österreich
site name
Nachhilfe und Prüfungsvorbereitung in Österreich
description
Nachhilfe

Technology

Server
nginx
CMS
Drupal
Analytics
  • Google Tag Manager
Fonts
  • Font Awesome

Third-party hosts loaded (4)

  • storage.googleapis.com×12
  • ajax.googleapis.com×3
  • www.googletagmanager.com×2
  • use.fontawesome.com×1

Social

Contact

Phone

DNS records live

NS
  • ns01.trademarkarea.com
  • ns02.trademarkarea.com
  • ns03.trademarkarea.com
MX
Show 6 MX records
  • 10 alt1.aspmx.l.google.com
  • 10 alt2.aspmx.l.google.com
  • 15 aspmx2.googlemail.com
  • 15 aspmx3.googlemail.com
  • 5 aspmx.l.google.com
  • 50 root208509.alfahosting-vps.de
TXT
  • 1kq4let005fl5jaqgll6no922d
Verified for
  • Brevo
  • Google

Email authentication weak

SPF
v=spf1+a+mx+ip4: 130.211.53.57+~all
permissive (+all) — anyone can send as this domain
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

WR3
from 2026-04-30 to 2026-07-29
Expires in 69 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://optimalnachhilfe.at/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' data: blob: 'unsafe-inline' https://www.google.com https://storage.googleapis.com https://maps.gstatic.com https://ssl.google-analytics.com https://www.youtube.com https://maps.googleapis.com https://fonts.googleapis.com https://fonts.gstatic.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://ipinfo.io https://ajax.googleapis.com https://use.fontawesome.com https://ssl.google-analytics.com https://maps.googleapis.com https://www.google.com https://www.gstatic.com https://www.googletagmanager.com https://region1.google-analytics.com https://www.googletagmanager.com/ns.html; connect-src 'self' https://*.google-analytics.com https://*.googleapis.com

Links to (1)

Linked from (1)