ortenau-klinikum.de

.de crawl dns

First seen 2026-04-18 · Last seen 2026-05-19 · ok HTTP/1.1 200 2365 ms crawled 2026-05-12

DE · 153.92.207.195 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title: Wir bewegen Zukunft Gesundheit | Ortenau Klinikum
Description: Das Ortenau Klinikum - Für die Menschen in der Region sind wir mit unserer hohen medizinischen und pflegerischen Kompetenz ein wichtiger Gesundheitspartner.
Language: de-DE
Generator: TYPO3 CMS
Canonical: https://www.ortenau-klinikum.de/

Open Graph

title: Wir bewegen Zukunft Gesundheit
site name: Ortenau Klinikum
description: Das Ortenau Klinikum - Für die Menschen in der Region sind wir mit unserer hohen medizinischen und pflegerischen Kompetenz ein wichtiger Gesundheitspartner.

Technology

Server: Apache

Third-party hosts loaded (1)

code.etracker.com×1

Social

Registration

Updated

2024-04-18

Name servers

ns1.baden.domains.
ns2.baden.domains.

DNS records live

NS

ns1.baden.domains
ns2.baden.domains

MX

20 mailin.ortenau-klinikum.de

TXT

MS=CE06019183A8363D32C7000F31AF527CE8F00D67

Verified for

Apple

Email authentication partial

SPF

v=spf1 mx a:b.spf.service-now.com a:c.spf.service-now.com a:d.spf.service-now.com -all

strict (-all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

dkim: v=DKIM1; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/sVB8HLFE1/oR39GT9NXJM3DyF+0wAayRfcSrSnqHYM7GSFEuvAxrR8Oe6+bm/Dqd4x+M4a5C/ULW8AM87JZ…

selectors probed

Certificate (current)

RapidSSL TLS RSA CA G1

from 2025-12-22 to 2027-01-23

Expires in 247 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.ortenau-klinikum.de/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: sameorigin
permissions-policy: camera=(), fullscreen=(self "https://www.youtube-nocookie.com/"), geolocation=(self), microphone=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ https://connect.facebook.net https://s.pinimg.com https://ct.pinterest.com; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' https://mediaintelligence.de/ https://connect.facebook.net/ https://s.pinimg.com/ https://ct.pinterest.com/static/ct/token_create.js https://mcm.jobs/services/okportalmanager.js https://medicaltalentnetwork.de https://*.etracker.com https://*.etracker.de https://unpkg.com/friendly-challenge@0.9.7/widget.module.min.js https://*.min-cdn.net/ https://min-cdn.net/ https://www.googletagmanager.com/ https://ad.ad-tracking.tech/ https://*.valmedi.de/; worker-src blob:; style-src 'self' 'unsafe-inline' https://*.typekit.net/; font-src 'self' https://*.typekit.net/; img-src 'self' blob: data: https://i.ytimg.com https://www.dgkj.de/fileadmin/user_upload/images/Elternseite/Elterninformationen/linkbanner/DGKJ_ELTERN_468x60.jpg https:/
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: same-origin